On 2011/09/30 10:04, John Hardin wrote:
On Fri, 30 Sep 2011, Ned Slider wrote:On 30/09/11 01:41, jida...@jidanni.org wrote:Sure a lot of "Your mailbox has exceeded" spam these days. I'll use body J_MAILBOX_FULL /^Your mailbox has exceeded/ score J_MAILBOX_FULL ... myself for now.I've seen a few of these, but probably not enough examples to have Bayes reliably catch them yet - the first few sneaked straight through uncaught. If we could organise a working group or something, and/or collect some examples, I'd happily help with writing some rules specifically for these.I've been collecting phishes for a while now - in several languages - and I've been intending to start working on some rules, perhaps evolved along the lines of the ADVANCE FEE rules. Anyone who wants to send me .tar.gz archives of phish samples is welcome to do so.
Consult the old SARE rules. It's been a LONG time since I had one of these
escape filters.
{o.o}
