Re: OT: Criminal Spammers

• From: "cismic" <cismic@xxxxxxx>
• To: "'[ISAserver.org Discussion List]'" <isalist@xxxxxxxxxxxxx>
• Date: Tue, 28 Oct 2003 12:29:11 -0800

Hi All,

Do any of you actually save spam?  I do since I find it interesting to
see how cleaver folks are when they add filtering crap all around the
click here to go there link's.  Some of the new spam kind of reminds me
of the old ascii art.

Joseph

-----Original Message-----
From: Brian Drought [mailto:brian@xxxxxxxxxxxx] 
Sent: Tuesday, October 28, 2003 12:03 PM
To: [ISAserver.org Discussion List]
Subject: [isalist] Re: OT: Criminal Spammers


http://www.ISAserver.org

Spencer,
I'm looking for valid words, so  it'd look for "Pum.ps" in the SQL
table, not find it and increment the duff word counter. ... but... I do
like your thinking. I've seen some spam which is along the lines of 'Or
your money back!!!!'. Excess of punctuation could make the code think
it's a big more spammy (I'm trying to make it so it'll look at lots of
different things and evaluate it that way).

One thing I've noticed aswell, is some spam has subject lines like:

"Get pills
jniihiodz  jjojod"

So I could look for a excess of whitespace aswell......

Keep the ideas coming folks :-)

  Bri

-----
Something I have seen recently is the overuse of punctuation in
sentences!

For Example (no points for guessing the subject to the spam!) N.o Pum.ps
- No S.urgery - No E.xercises *_100%_Money_Back_G.uarante.e This seems
to be acceptable to GFI.

I don't know whether there's a way of counting the punctuation/letters
ratio and tagging them this way.

...Spence




------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Other Internet Software Marketing Sites:
Leading Network Software Directory: http://www.serverfiles.com No.1
Exchange Server Resource Site: http://www.msexchange.org Windows
Security Resource Site: http://www.windowsecurity.com/ Network Security
Library: http://www.secinf.net/ Windows 2000/NT Fax Solutions:
http://www.ntfaxfaq.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
cismic@xxxxxxx To unsubscribe send a blank email to
$subst('Email.Unsub')

Other related posts:

• » OT: Criminal Spammers
• » RE: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » RE: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » RE: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » RE: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » Re: OT: Criminal Spammers
• » Re: OT: Criminal Spammers

1. Home
2. isalist
3. Archive
4. 10-2003

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---