On Tue, 2 Sep 2014, Kevin A. McGrail wrote:
On 9/2/2014 11:55 AM, John Hardin wrote:
On Tue, 2 Sep 2014, Kevin A. McGrail wrote:
> On 9/1/2014 9:56 PM, John Hardin wrote:
> >
> > Is there any way to interpolate the "current destination user
> > name" perl variable into a rule?
>
> Do you mean something to do with the username passed to spamc?
Ideally the username the message is destined for;
Spamassassin has no idea who the email is destined to by username.
OK, darn.
The reason I ask is I've started to see spams with my username in body
URIs, for example:
View as a webpage
https://jhardin4874.org/policy/?qs=3Db15XXXXXXa89ab007c31d5ac410973dae95fd
Absent having the destination username available in a variable that could
be used in a RE, I suspect this is the best that can be done:
full __RECIP_IN_URL
m;^Received:[^:]{1,400}?\sfor\s<(\w+)\@.+?https?://\1\d*\.;ism
...in all its wince-worthy FULLness.
Suggestions for alternatives welcomed.
--
John Hardin KA7OHZ http://www.impsec.org/~jhardin/
jhar...@impsec.org FALaholic #11174 pgpk -a jhar...@impsec.org
key: 0xB8732E79 -- 2D8C 34F4 6411 F507 136C AF76 D822 E6E6 B873 2E79
-----------------------------------------------------------------------
Maxim II: A Sergeant in motion outranks a Lieutenant who doesn't
know what's going on.
Maxim III: An ordnance technician at a dead run outranks everybody.
-----------------------------------------------------------------------
15 days until the 227th anniversary of the signing of the U.S. Constitution
