package Mail::SpamAssassin::Plugin::HTTPSMismatch;
use Mail::SpamAssassin::Plugin;
use Mail::SpamAssassin::Logger;
use strict;
use warnings;
use bytes;
use vars qw(@ISA);
@ISA = qw(Mail::SpamAssassin::Plugin);
sub new {
my $class = shift;
my $mailsaobject = shift;
$class = ref($class) || $class;
my $self = $class->SUPER::new($mailsaobject);
bless ($self, $class);
$self->register_eval_rule ("check_https_http_mismatch");
return $self;
}
sub check_https_http_mismatch {
my ($self, $permsgstatus, undef, $minanchors, $maxanchors) = @_;
$minanchors ||= 1;
if (!exists $permsgstatus->{chhm_hit}) {
$permsgstatus->{chhm_hit} = 0;
$permsgstatus->{chhm_anchors} = 0;
foreach my $v ( values %{$permsgstatus->{html}->{uri_detail}} ) {
next unless (exists $v->{anchor_text} && @{$v->{anchor_text}});
my $uri;
foreach (@{$v->{cleaned}}) {
if (m@^https?://([^/:]+)@i) {
$uri = $1;
if ($uri =~ /^\d+\.\d+\.\d+\.\d+$/) {
undef $uri;
next;
}
$uri = Mail::SpamAssassin::Util::RegistrarBoundaries::trim_domain($uri);
undef $uri unless (Mail::SpamAssassin::Util::RegistrarBoundaries::is_domain_valid($uri));
last if $uri;
}
}
next unless $uri;
$permsgstatus->{chhm_anchors}++ if exists $v->{anchor_text};
foreach (@{$v->{anchor_text}}) {
if (m@https://([^/:]+)@i) {
my $https = $1;
if ($https !~ /^\d+\.\d+\.\d+\.\d+$/) {
$https = Mail::SpamAssassin::Util::RegistrarBoundaries::trim_domain($https);
undef $https unless (Mail::SpamAssassin::Util::RegistrarBoundaries::is_domain_valid($https));
}
next unless $https;
dbg("https_http_mismatch: domains $uri -> $https");
next if $uri eq $https;
$permsgstatus->{chhm_hit} = 1;
last;
}
}
}
dbg("https_http_mismatch: anchors ".$permsgstatus->{chhm_anchors});
}
return ( $permsgstatus->{chhm_hit} && $permsgstatus->{chhm_anchors} >= $minanchors && (defined $maxanchors && $permsgstatus->{chhm_anchors} < $maxanchors) );
}
1;