[SURBL-Discuss] TLD "fakeouts" - in, at, it, is, to, so

Jeff Chan jeffc at surbl.org
Thu Aug 10 04:07:48 CEST 2006

On Wednesday, August 9, 2006, 11:53:48 AM, Rob Systems) wrote:
> I don't want my solution to be merely to only check domains
> within e-mails which start with "http://" because this would
> miss many spams. 

> But the only solution I can think of at the moment is ignore
> any potential domains within the message that end in these
> particular TLDs unless the "http://" is really there. 

SpamAssassin takes one valid approach:  look at how common mail
clients render messages and check the strings they would treat as
URIs.  That tends to be things like http://  www. something, etc.

There's probably no universal or perfect answer.

Jeff C.
Don't harm innocent bystanders.

More information about the Discuss mailing list