THE FILTERS
1 Virus Attached?
2 Duplicate Fm-To
3 Whitelist (Passlist)
4 Friendly Domains
5 Newsletters
6 List Subscriptions
7 Keywords
8 Personality
9 Bogus Address
10 Username in
Subject
11 Click Here
12 !!!!!!!!!!!!
13 Remote Images
or Database Links
14 Bcc From
Unknown
15 Bad Word List #1
16 Bad Word List #2
17 Tracking Codes
in Subject
18 Bad Word List #3
19 Bad Word List #4
20 Bad Word List #5
21 Too Many HTTP's
22 Adult Links
23 Bogus Hotmail,
AOL and Yahoo
Other Interesting
Eudora Filters:
Numerical User
Name
HTML Contents
Asian Characters
Blank Subject
Secret Keyword
With Auto-Reply
EUDORA SPAM FILTER 16
Bad Word List #2This filter catches 28% of my test spam, and 4% of friendly emails before whitelisting
This filter catches any email with any one of the following matches:
PHP? or ASP? (possible database links)
TODAY!
FREE used 3 or more times in the body of an email
Money amounts of $1000 or more, with or without a comma separator, having three or more contiguous zero's. Ex: $1000, $20,000, $5,000,000, etc.
Match: Incoming and Manual Header «Body» Verb: matches regexp (case insensitive) Value: \.PHP\?|\.ASP\?|TODAY!|(FREE.*){3}|\$.?.?.,?000 Actions: Transfer To Spam.mbx Make Label 7 Make Priority Highest Skip Rest Breaking it down:
\.PHP\?|\.ASP\?|TODAY!|(FREE.*){3}|\$.?.?.,?000
\.PHP\? will find all html links to web page file types of .php that have a ? question mark after them. These links can be to databases which will log the fact that you have just opened that particular email - thereby validating to the spammers that your email address is "a live one".
TODAY! simply finds all occurrences of the word "today" followed with an exclamation mark.
(FREE.*){3) will find any email which uses the word "FREE" three or more times.
\$.?.?.,?000 finds money references starting with a "$" dollar sign and using three or more zeros "000" , with or without commas.
