Resending [Phishing net and international characters]

Denis Beauchemin denis.beauchemin at USHERBROOKE.CA
Mon Aug 29 15:21:14 IST 2005

On Sat, 27 Aug 2005 11:05:20 +0100, Julian Field
<MailScanner at ECS.SOTON.AC.UK> wrote:

>How is MailScanner going to know that %E9 is the same as &eacute; ?

I don't know but since these are no longer illegal there has to be a way to
not treat them as such.


>Denis Beauchemin wrote:
>> Hello Julian,
>> Someone told me that our phishing net believes ALL accented characters
>> are bad, as seen here:
>> <a href=""><font color="red"><b>MailScanner
>> soup&ccedil;onne le lien "" d'&ecirc;tre une tentative de
>> fraude de la part de</b></font> www.&eacute;.com</a><br>
>> The source of the message was:
>> <a href="">www.&eacute;.com</a>
>> I know there are many vulnerabilities with IDN, but they will probably
>> get mainstream soon.  I found this article about Netscape 7 that dates
>> back July 2003:
>> So, is this a bug in MS or a desing decision?
>> Thanks again!
>> Denis
>> PS: I sent this message 2 hours ago and I still haven't seen it back...

------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki ( and
the archives (

Support MailScanner development - buy the book off the website!

More information about the MailScanner mailing list