Re: Heads up: new open redirecters and new spammer trick for urls
johnml at michaweb.net
Tue May 18 00:40:16 CEST 2004
From: "John Hardin" <johnh at aproposretail.com>
To: "SURBL Discuss" <discuss at lists.surbl.org>; "SpamAssassin Users"
<spamassassin-users at incubator.apache.org>
Sent: Monday, May 17, 2004 7:50 PM
Subject: Re: Heads up: new open redirecters and new spammer trick for urls
> On Sun, 2004-05-16 at 01:46, John Fawcett wrote:
> > In order to obtain the 302 code the browser sees
> > 2 things are necessary:
> > 1. Add a / before the * (That is the correct format for
> > yahoo redirection)
> > 2. Change the hTtP:\\ to hTtP:// (The mixed case is not a problem)
> I think fixing all backslashes to forward slashes in the URL before
> processing by SURBL would deal with both cases.
So a small workaround in get_uril_list in PerMsgStatus.pm will convert \ to
/. Could be useful to feed this into the 3.x SA development tree.
$uri =~ s/\\/\//g;
> Are (unescaped or unencoded) backslashes even *valid* in URLs?
More information about the Discuss