> > > I received an odd email that makes spamd fall over. I'm using the
> > > SAWin32 port, and was wondering whether other users could also see
> > the
> > > same problem with this message or whether the problem is peculiar
> to
> > > the Windows port.
> > >
> > >
> > >
> > > The glaring weirdnes
> > I received an odd email that makes spamd fall over. I'm using the
> > SAWin32 port, and was wondering whether other users could also see
> the
> > same problem with this message or whether the problem is peculiar to
> > the Windows port.
> >
> >
> >
> > The glaring weirdness with this email is
> Razor is also a good check, but it only free for personal use
> (same as dcc): http://razor.sourceforge.net
> Razor compile and install is a bit more difficult than dcc or
> pyzor, as it might need a whole lot of perl modules
> (depending on what is already there), so better get your CPAN
>
body SRH_DRUG4
/(?:v\s*.\s*i\s*.\s*a\s*.\s*g\s*.\s*r\s*.\s*a|c\s*.\s*i\s*.\s*a\s*.\s*l\
s*.\s*i\s*.\s*s|v\s*.\s*a\s*.\s*l\s*.\s*i\s*.\s*u\s*.\s*m)/i
That is what I am using, and it is finding them.
Probably not the most efficient rule, but it gets the job done.
Beware that your or my MUA may hav
> While generic tests for character/letter obfuscation are
> difficult, this
> guy is pretty predictable.
>
> body SRH_PENNY2 /(?:e\s*mai\||mi[|l]{2}ions|resu\|ts|wi[|l]{2})/
>
> Add your own l->| words to this list, although he hasn't failed to use
> one in the list above in each one of hi
> There have been several threads about this specific spammer
> in the last
> few months. Some of them with this exact question - mostly
> the answer
> is no.
>
> > e mail with No Thanks in the subject to st0ck62 @ yahoo.com
>
> It is much easier to match on this email address with someth
