[Esd-l] Removal of HTML comments

[Bill Larson]

How long do you think it will be once a virus writer realizes that they can
bypass things like the sanitizer using this method that it will take for a
virus of this nature to appear. I know I would much rather be proactive than
retroactive.

Bill Larson
Network Administrator
Compu-Net Enterprises
----- Original Message -----
From: "John D. Hardin" <jhardin at impsec.org>
To: "Brett Glass" <brett at lariat.org>
Cc: <esd-l at spconnect.com>
Sent: Friday, January 17, 2003 11:41 PM
Subject: Re: [Esd-l] Removal of HTML comments


> On Fri, 17 Jan 2003, Brett Glass wrote:
>
> > John, have you considered adding removal of HTML comments to the
> > filter?  Many spammers throw HTML comments into the middle of
> > words to thwart spam detection schemes, and filters such as yours
> > might be a good way to get them out, along with the scripts. (I
> > already do this in my own filter.)
>
> Yeah, I've thought about it. I agree it would be a good anti-spam
> tool. However, I've resisted putting anti-spam features into the
> sanitizer before and I'm going to continue to do so.
>
> --
>  John Hardin KA7OHZ    ICQ#15735746    http://www.impsec.org/~jhardin/
>  jhardin at impsec.org                        pgpk -a jhardin at impsec.org
>  key: 0xB8732E79 - 2D8C 34F4 6411 F507 136C  AF76 D822 E6E6 B873 2E79
> -----------------------------------------------------------------------
>   The fetters imposed on liberty at home have ever been forged out
>   of the weapons provided for defense against real, pretended, or
>   imaginary dangers from abroad.
>                                             -- James Madison, 1799
> -----------------------------------------------------------------------
>    655 days until the Presidential Election
> _______________________________________________
> Esd-l mailing list
> Esd-l at spconnect.com
> http://www.spconnect.com/mailman/listinfo/esd-l