Jeff Chan wrote:
On Friday, May 12, 2006, 12:47:10 PM, SM SM wrote:
...
On the application side, if phishing.legitimate-free-host.com or www.freecat.biz appeared in a message, they should properly be reduced to legitimate-free-host.com and freecat.biz before checking against the blacklists. Unless the unqualified domains were actually blacklisted, they would not match (www.freecat.biz is not the same as freecat.biz). In a sense that is an error: a mismatch between the blacklist data and the application's handling of message URI data. But the error is really on the data side, so there's no need to do anything off-spec with the applications. Yes, it may cause a few spams or phishes to be missed, but they're very rare and obscure.
j-chkmail don't bother with the number of parts of the domain. When it finds an URL with N parts (say pN.pN-1.pN-2...p2.p1), it does N checks and stops when if finds something matching. So, if you list www.freecat.biz, j-chkmail will detect www.freecat.biz and xxx.www.freecat.biz, but not freecat.biz.
I think it's good to have subdomains listed in SURBL.
Regards,
Jose-Marcio