* Please keep replies on-list.
> >>Anyone have any good tricks for catching this damn image spam that they
> >>want to share?
> >http://wiki.apache.org/spamassassin/FuzzyOcrPlugin
> if you want a less cpu intensive method, try rejecting any email with a
> gif attachment comming from a non-whitelisted host/sender on a dsl
> zone. For me, those mime acl also work even for whitelisted hosts:
Dropping every .gif is not an option for me. Nor is whitelisting hosts,
there's just too many. That's why FuzzyOcrPlugin for SA is quite okay
for me ;) It catches an amazing amount of 'picture spam'!
> deny condition = ${if eq{${lc:$mime_content_type}}\
> {text/html}}
> mime_regex = \</HEAD>[\\n\\r]+<BODY bgColor=#ffffff>[\\n\\r]+\
> <DIV( align=center)>(<FONT face=Arial size=2>)\
> <IMG alt="" \
> hspace=0[\\s\\n\\r]+src="cid\:[0-9a-f]{12}.+\
>
> [0-9a-f]{8}.+[0-9a-f]{8}@[a-z\.]+"[\\s\\n\\r]align=\
> baseline[\\s\\n\\r]+border=0>
> message = SPAM not welcome
>
> deny condition = ${if match {${lc:$mime_filename}}{\N[.]gif$\N}}
> !condition = ${if eq {$mime_content_id}{}}
> condition = ${if eq {$mime_part_count}{4}}
> spf = neutral:none:invalid:softfail
> acl = dialup_acl
> message = SPAM not welcome
>
> deny condition = ${if match {${lc:$mime_filename}}{\N[.]gif$\N}}
> condition = ${if eq {$mime_part_count}{2}}
> condition = ${if eq {$mime_content_size}{9}}
> spf = neutral:none:invalid:softfail
> acl = dialup_acl
> message = SPAM not welcome
--
| If you're too open-minded, your brain will fall out.
| 1024D/08CEC94D - 34B3 3314 B146 E13C 70C8 9BDB D463 7E41 08CE C94D
%20%20%20It%20catches%20an%20amazing%20amount%20of%20'picture%20spam'!%0A>%20%0A>%20>%20%0A>%20>%20%0A>%20>%20%0A>%20%0A>%20--%20%0A>%20%7C%20If%20you're%20too%20open-minded,%20your%20brain%20will%20fall%20out.%0A>%20%7C%201024D/08CEC94D%20-%2034B3%203314%20B146%20E13C%2070C8%20%209BDB%20D463%207E41%2008CE%20C94D%0A>%20%0A>%20%0A>%20 "Répondre à ce message")
