Phishing Feature: Convert HTML To Text
Julian Field
MailScanner at ecs.soton.ac.uk
Fri Oct 21 12:23:06 IST 2005
I have just added a comment to the article. Sending plain text
messages doesn't help at all. It is trivial to write an HTML email
message that looks exactly like a plain text one when viewed in all
the most popular email apps.
On 21 Oct 2005, at 10:52, Dhawal Doshy wrote:
> Here's an interesting read for the phishing problem:
>
> "Email Phishing Problem Solved"
> http://www.emailbattles.com/archive/battles/spam_aabihbidje_ba/
>
> And here's my point.. if the phishing net engine detects a phished
> mail
> (post safe/white lists), have an option to convert the HTML mail to
> text, thus making the site clearly visible if the user decides to
> click on a link. Of course the subject modifications {Fraud?} still
> need to be made.
>
> # If a phishing fraud is detected, do you want to convert all html in
> # the mail into text? For false positives, add the site to the
> Phishing
> # Safe Sites File [%etc-dir%/phishing.safe.sites.conf]
> # This can also be the filename of a ruleset.
> Convert Phishing HTML To Text = yes
>
> Thoughts? ideas?
>
> - dhawal
--
Julian Field
www.MailScanner.info
Buy the MailScanner book at www.MailScanner.info/store
PGP footprint: EE81 D763 3DB0 0BFD E1DC 7222 11F6 5947 1415 B654
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
------------------------ MailScanner list ------------------------
To unsubscribe, email jiscmail at jiscmail.ac.uk with the words:
'leave mailscanner' in the body of the email.
Before posting, read the Wiki (http://wiki.mailscanner.info/) and
the archives (http://www.jiscmail.ac.uk/lists/mailscanner.html).
Support MailScanner development - buy the book off the website!
More information about the MailScanner
mailing list