bagle SpamAssassin rule [SCANNED]
Dave's List Addy
listonly at WEBPRESENCEGROUP.NET
Wed Mar 3 19:54:00 GMT 2004
On 3/3/04 1:51 PM, "Rob" wrote:
>>> For those of you who want to try to catch these with SpamAssassin, I
>>> think the following should work:
>>>
>>> body BAGLE_PASSWORD /password.*[0-9]{4,}/i
>>> describe BAGLE_PASSWORD Password.*numbers
>>> score BAGLE_PASSWORD 6.5
>>>
>>> If anyone has a better suggestion, let us know!
>>
>> Has anyone found this to work? We can't upgrade as of yet to the latest MS
>> since we did a apt-get install :( Will know better next time :)
>> --
>> Thanks!!
>> David Thurman
>> List Only at Web Presence Group Net
>
> I forwarded an infected mail with the bagle zip attatchment and it caught it
> and threw it in my spam folder. The header information showed it was the
> BAGLE rule set that found it.
Thanks!! Band-aid for now :)
--
Thanks!!
David Thurman
List Only at Web Presence Group Net
More information about the MailScanner
mailing list