A Mail.app rule for catching image spam
It seems that I'm not the only one being inflicted with a new wave of image spam, as Bill Benson, a MacInTouch reader, has posted his rule solution for this junk that seems to so easily elude Mail.app's filters. Tim Gaden at Hawk Wings, also a victim, elaborates on how to set up this rule, as a trick is involved. To summarize:
- for the first condition, select 'Edit Header List...'
- in its accompanying option, chose 'Content-Type' (or create it if you have to)
- The Content-Type option will then take first place in the rule (or you might have to select it from the criteria list), allowing you to finish building the rule as pictured
Since I have been receiving around a dozen of these messages on a daily basis, I think I can say that, so far, this rule has been a success. Three cheers for the power of community -based spam filtering. If you aren't using Mail.app, however, I would imagine this trick can be adapted for other email apps. Anyone else try it outside of Mail.app?
Share
Categories
It seems that I'm not the only one being inflicted with a new wave of image spam, as Bill Benson, a MacInTouch reader, has posted his rule...
Add a Comment
Thanks for the tip.
Another tip from me is to use larger calibers than 9mm on spammers...aim for their feet...
For the people using SpamSieve, there is a good and free alternative: JunkMatcher. It also uses Bayesian filtering plus a set of other rules that are regularly updated.
October 25 2006 at 6:22 AM Report abuse Permalink rate up rate down Replyhmm doesn't seem to work. Must not be a header, but some other heading.
September 05 2006 at 10:34 PM Report abuse Permalink rate up rate down ReplyI do have one out of thousands of emails that use that kind of content type in my current saved emails, so I suppose it's not too bad at false positives. However I wonder if there is a way to simply filter out messages that contain base 64 stuff?
Would
Content-Transfer-Encoding (is equal to) base64
work?
Is this less of a false positive risk?
This is a great tip... I've set it up in Thunderbird as a separate rule also matching people who are not in my personal address book and so far it has worked a treat. I've been getting those stupid mails daily for months and I'd love some hacker to track them down and burn them good. I never knew about being able to create the Content-Type option before. I'm rapt!
August 21 2006 at 6:46 AM Report abuse Permalink rate up rate down ReplyAha! Thanks, Andy - I should have read the Hawk Wings post properly ;-)
[Later...]
Well, it's just caught all of those annoying spam mails that always land in my inbox when I fire up Mail each morning, so that's a plus. No false positives yet, so fingers crossed...
It's true you do need to check for false positives, but simply drag these back to the inbox to accept them as "previous recipients", so that future messages from this sender will be accepted as well.
August 06 2006 at 10:33 PM Report abuse Permalink rate up rate down ReplyThanks for this rule hint as I get some of this mail and it is time consuming deleting it, this may help
Thanks greatly
JJ
I've posted a guide for doing this in Mozilla Thunderbird here:
http://www.neilturner.me.uk/2006/Aug/06/stopping_image_spam_in_th.html
It's actually pretty much the same. Can't be done in Outlook Express though.
It is typically wise if you unfortunately get a lot of spam (I get about 1000 messages a day now due to having some public email addresses of necessity) to direct the results of this rule not to your general junk directory but to a secondary junk directory. I call mine A-Spam.
The reason is that it makes it much easier to look for false positives.
Hot Apps on TUAW
Deals of the Day
more deals- JVC Motion Sensing Clock Radio with Dual iPod Docks for $55 + free shipping
- Apple iPhone Headset with Mic for $4 + $2 s&h
- miFrame Picture Frame Dock for iPad for $64 + $8 s&h
- Refurb Apple iPod nano 8GB MP3 Player for $99 + free shipping, 16GB for $119
- Hannspree Apple-Shaped 28" 1080p LCD HDTV for $270 + free shipping
- Philips wOOx Alarm Clock Radio for Apple iPod / iPhone for $60 + free shipping
Software Updates
more updates- EFI Firmware Update brings Lion Internet Recovery to 2010-model Macs
- OS X Lion 10.7.3 released with Safari 5.1.3, Wi-Fi bug fix
- Aperture updated to 3.2.2, addresses Photo Stream issue
- Apple updates Keynote to address Lion issues
- Google Search app gets new look on iPad
- Apple releases Apple TV Software Update 4.4.3
Featured Stories
more stories
Popular Stories
TUAW (or The Unofficial Apple Weblog) is a website devoted to tips, reviews, news, analysis and opinion on everything Apple.
35 Comments