* dodan 99_carnet.cf sa phishing potpisima

diff --git a/99_carnet.cf b/99_carnet.cf
new file mode 100644 (file)
index 0000000..5c5b251
--- /dev/null
+++ b/99_carnet.cf
@@ -0,0 +1,15 @@
+header      __CN_PHISH1_SUB     Subject =~ /^Confirm your email identity/i
+body        __CN_PHISH1_BODY    /Confirm your email identity below/i
+body        __CN_PHISH1_CODE    /Warning Code:[a-zA-Z0-9]+/
+body        __CN_PHISH1_CODE2   /network system with error code [a-zA-Z0-9]+/
+meta        CN_PHISH1           (__CN_PHISH1_SUB && __CN_PHISH1_BODY && __CN_PHISH1_CODE && __CN_PHISH1_CODE2)
+score       CN_PHISH1           10.0
+describe    CN_PHISH1           CARNet-Debian phish signature 1
+
+header      __CN_PHISH2_SUB     Subject =~ /^Message from/i
+body        __CN_PHISH2_BODY    /account update our account/i
+body        __CN_PHISH2_BODY2   /authomatically spam free/i
+body        __CN_PHISH2_CODE    /error code [a-zA-Z0-9]+/i
+meta        CN_PHISH2           (__CN_PHISH2_SUB && __CN_PHISH2_BODY && __CN_PHISH2_BODY2 && __CN_PHISH2_CODE)
+score       CN_PHISH2           10.0
+describe    CN_PHISH2           CARNet-Debian phish signature 2

diff --git a/debian/changelog b/debian/changelog
index a53e89b..bdd4291 100644 (file)
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+spamassassin-cn (2:3.2.5-3) stable; urgency=low
+
+  * dva nova phishing potpisa za phishing napade ucestale prema CARNet
+    domenama, po zahtjevu CARNet Abuse sluzbe
+
+ -- Dinko Korunic <kreator@carnet.hr>  Thu, 12 Feb 2009 17:39:51 +0100
+
 spamassassin-cn (2:3.2.5-2) stable; urgency=low
 
   * depends o novoj inacici SpamAssassin paketa (backportana iz Lennyja,

diff --git a/debian/install b/debian/install
index d917ac6..e7b134e 100644 (file)
--- a/debian/install
+++ b/debian/install
@@ -1,4 +1,5 @@
 sa-update.channels etc/spamassassin
 sa-keys.pgp etc/spamassassin
+99_carnet.cf etc/spamassassin
 spamassassin-cn etc/logrotate.d
 check_whitelist usr/bin