laziness, impatience, and hubris | |
PerlMonks |
Re^2: regex help or pointer to module neededby Xxaxx (Monk) |
on Jun 08, 2004 at 07:54 UTC ( [id://362233]=note: print w/replies, xml ) | Need Help?? |
Yeah, wouldn't life be grand if they were using the exact same string each and every time. Unfortunately that is not the case.
The length in characters of the "tags" is variable. The location of the insert within words is random. The same spam from the same company on the same day is actually unique on each sending. One email will have: another will have: and as in the example given first: The spam generator seems to take a standard message then insert madeup tags at random. I am guessing they are using <string> ... </anotherstring> pairs to avoid an existing filter. In actual fact, anything that will match the sentence given without also including legit html and legit xml will probabaly work. That is anything other than matching the exact phase as given. In all honesty it hadn't occured to me that someone would think I meant the phrase as given. I'll be more explicit next time. If you think further and more complete examples would be helpful I can send some along. This is very elusive spam. Especially since it is coming from hacked computers -- hence the return smtp is legit, the ISPs are not on any blacklist so the email envelope is of no help. At least until the poor schmuck who's computer was owned is blacklisted or blocked.
In Section
Seekers of Perl Wisdom
|
|