On Tue, 2008-01-22 at 13:01 +0100, Chr. v. Stuckrad wrote:
> On Mon, 21 Jan 2008, John D. Hardin wrote:
>
> > > m,https?://(?:[^\./]+\.)*goo+gle(?:pages)?\.(?:[a-z][a-z][a-z]?(?:\.[a-z][a-z])?)/+.*[?&](?:btni|adurl),i
>
> If I understand that pattern, both the '*' are 'unbounded'???
>
> This might 'break' your spamfilter, if spamassassin gobbles
> up all memory during analysis. Better replace any unbounded
> '*' by reasonable length {0,N}, with N a little more than the
> seen strings.
You've snipped the beginning of the rule definition. It's an uri rule,
and thus the RE will be matched against identified URIs of the mail body
only -- which by itself usually is rather bounded. :)
guenther
--
char *t="[EMAIL PROTECTED]";
main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i<l;i++){ i%8? c<<=1:
(c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}
