https://bz.apache.org/SpamAssassin/show_bug.cgi?id=8358
--- Comment #5 from Kent Oyer <[email protected]> --- I haven't found a browser or email client that will open this type of link. All of the ones I tested either do nothing or show an error page. Granted, I didn't test all of them. However, this seems like a very unsuccessful attack vector. That probably explains why there's so few of them in the corpora. Giovanni's patch works and is a one-line change so I don't see any harm in implementing it. But I would rather see something more broad. For example, look for "https://"; anywhere in any URI and extract it. Or a way to detect malformed URIs in general. -- You are receiving this mail because: You are the assignee for the bug.
