On Thu, 2008-02-28 at 11:36 -0800, JP Kelly wrote:
> any takers on this?


On what? The Subject or the not included original post?


> On Feb 27, 2008, at 2:31 PM, Chip M. wrote:
> > The main thing that stands out (to me) is the China TLD in the URL.
> > We block all those on sight (unless they're in the recipient's
> > domain skip
> > list - so far, none of my users have any China TLDs in theirs).
> >
> > Perhaps one of the regex gurus will whip you up a rule.


While I understood this comment more generally, aiming at some rules to
catch the provided spample -- if you actually are after an RE to score
on China TLDs, here you go. That much should be easy:

uri TLD_CHINA m,https?://([-\w]+\.)+cn(/|$),

guenther


--
char *t="\10pse\0r\0dtu\0.@ghno\x4e\xc8\x79\xf4\xab\x51\x8a \x10\xf4\xf4\xc4";
main(){ char h,m=h=*t++,*x=t+2*h,c,i,l=*x,s=0; for (i=0;i (c=*++x); c&128 && (s+=h); if (!(h>>=1)||!t[s+h]){ putchar(t[s]);h=m;s=0; }}}