[Esd-l] Removal of HTML comments

John D. Hardin jhardin at impsec.org
Fri Jan 17 21:46:01 PST 2003

On Fri, 17 Jan 2003, Brett Glass wrote:

> John, have you considered adding removal of HTML comments to the
> filter?  Many spammers throw HTML comments into the middle of
> words to thwart spam detection schemes, and filters such as yours
> might be a good way to get them out, along with the scripts. (I
> already do this in my own filter.)

Yeah, I've thought about it. I agree it would be a good anti-spam
tool. However, I've resisted putting anti-spam features into the
sanitizer before and I'm going to continue to do so.

 John Hardin KA7OHZ    ICQ#15735746    http://www.impsec.org/~jhardin/
 jhardin at impsec.org                        pgpk -a jhardin at impsec.org
 key: 0xB8732E79 - 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
  The fetters imposed on liberty at home have ever been forged out
  of the weapons provided for defense against real, pretended, or
  imaginary dangers from abroad.
                                            -- James Madison, 1799
   655 days until the Presidential Election

More information about the esd-l mailing list