false fraud positives with domain shorteners

Scott Silva ssilva at sgvwater.com
Thu Nov 17 21:57:48 GMT 2011

on 11/17/2011 11:41 AM Joolee spake the following:
> My problem was that it activated on stuff like groupon mails containing
> something like: <a href="http://groupon.com/action/blaaa">Print your photos
> with makeyourownphotoalbum.com <http://makeyourownphotoalbum.com>!</a>
> To counter the removal of the url hiding protection, I've added a few filters
> to SpamAssassin to add high scores for stuff like <a
> href="http://...">https://...</a> or <a href="http://.....html/.php">bank-name
> or website</a> (Got only 4 big banks that are used for phishing.)
> I think I've contacted the mailinglist before for that problem but the the
> answer was, as it almost always is, that all misbehaviour is "by design" and
> "should not be changed".
I never said it shouldn't be changed, I just said it was doing what it was 
designed for... If you want to code and test changes, Julian would probably 
look at them when he is free

More information about the MailScanner mailing list