On Tue, 2007-07-03 at 10:11 -0500, Matt wrote:
> Why can't Spamassassin do like a MD5 hash of any URL's in a message
> and check them against a database?


Well, not MD5, but Whiplash type 8 signatures in Razor-2 are pretty
similar.

> I just think it would help catch
> things like: geocities.com/spamer123/ or spamer123.tripod.com and etc.


Again, Razor does a fair job at finding this, as long as people report.


> It would also work for Tinyurl links and the like.


Google recently came out with an anti-malware API that uses various MD5
hashes of URI's, but they have not yet licensed it for the world, and I
only briefly thought about writing a plugin to call it.

--
Daniel J McDonald, CCIE # 2495, CISSP # 78281, CNX
Austin Energy
http://www.austinenergy.com