Thursday, June 13, 2002

Teaching SpamAssassin about the Microsoft KLEZ virus

Adding lines like the ones below does a pretty good job about tagging
the KLEZ virus as spam. It does miss some of the KLEZ variations
because the KLEZ_CONTENT is slightly different.

$ grep -i klez /usr/share/spamassassin/*
/usr/share/spamassassin/ KLEZ_IFRAME /iframe
/usr/share/spamassassin/ KLEZ_IFRAME Frame u
sed by the KLEZ virus
/usr/share/spamassassin/ KLEZ_CONTENT /TVqQAA
/usr/share/spamassassin/ KLEZ_CONTENT Content
of part of the KLEZ virus
/usr/share/spamassassin/ KLEZ_IFRAME 10.0
/usr/share/spamassassin/ KLEZ_CONTENT 10.0

1 comment:

  1. Oh my goodness! an amazing article dude. Thank you However I am experiencing issue with ur rss . Don?t know why Unable to subscribe to it. Is there anyone getting identical rss problem? Anyone who knows kindly respond. Thnkx *WONDERFUL Post.thanks for share..more wait .. ;) ?

    Best Web Development Company in Bhopal