http://bugzilla.spamassassin.org/show_bug.cgi?id=3318
------- Additional Comments From [EMAIL PROTECTED] 2004-04-27 17:02 ------- Subject: Re: New: multiply-encoded URIs missed On Tue, Apr 27, 2004 at 04:08:50PM -0700, [EMAIL PROTECTED] wrote: > we currently don't catch it, because of the second layer of encoding. I'm still not thrilled with the idea, but ... I edited url_encode, and took out the "preserve encoding" for "<", ">", """, "#", "%", ";", "/", "?", ":", "@", "=", and "&", which is what the spec says we should do. With no other modifications: debug: uri found: http://www.google.com/url?q=http://www.google.com/url?q=http://www.expage.com/manger32 debug: uri found: http://www.google.com/url?q=http://www.expage.com/manger32 debug: uri found: http://images.google.ca/imgres?imgurl=gmib.free.fr/viagra.jpg&imgrefurl=http://www.google.com/url?q=http://www.google.com/url?q=http://www.expage.com/manger32 debug: uri found: http://www.expage.com/manger32 debug: uri found: http://images.google.ca/imgres?imgurl=gmib.free.fr/viagra.jpg&imgrefurl=http://www.google.com/url?q=http://www.google.com/url?q=%68%74%74%70%3A%2F%2F%77%77%77%2E%65%78%70%61%67%65%2E%63%6F%6D%2F%6D%61%6E%67%65%72%33%32 Part of me thinks this is going to cause FPs and such, but I'll run a test and see what the results say. ------- You are receiving this mail because: ------- You are the assignee for the bug, or are watching the assignee.
