[SURBL-Discuss] More spams with Zdnet redirector
Daryl C. W. O'Shea
spamassassin at dostech.ca
Sat Apr 9 11:19:50 CEST 2005
Raymond Dijkxhoorn wrote:
> Hi!
>
>> Why the use of the full test rather than the uri test? Regards,
>
>
>>> full PROLO_REDIR_ZDNET_CHECK_1 /http:\/\/.*chkpt.zdnet.com\/chkpt/
>>> score PROLO_REDIR_ZDNET_CHECK_1 8.0
>>> describe PROLO_REDIR_ZDNET_CHECK_1 PROLO_REDIR-ZDNET CHECK_1_2_3, Body
>
>
> URI tests are done on the toplevel domain, i dont want to block whole
> zdnet...
It's the network tests that are done on the registered domain. The
entire URI is available to the uri-type tests.
Your rule above, using uri instead of full, works under both 3.0 and 3.1
(and probably older versions).
Of course, if you've got the time to spare, the full test isn't going to
hurt anything (well your machine might blow up, but that's it!). :)
Daryl
More information about the Discuss
mailing list