How are redirection sites handled?
Redirection sites like drs.yahoo.com, tinyurl.com, etc. take external URIs (unfortunately including those mentioned in unsolicited messages) and redirect a browser to them. Therefore redirectors can be abused if a simple web site check only looks at the initial web site, making the whole web site appear legitimate. For example the Yahoo redirection below might be (incorrectly) parsed as a legitimate yahoo domain: http://drs.yahoo.com/covey/parr/*http://other.address/ SpamCop itself seems to disambiguate (most of) the redirection. If someone is using a redirector to send traffic to somedomain.com, SpamCop seems to detect and resolve it correctly to somedomain.com most of the time. So the data that’s used as input to sc.surbl.org already has redirectors correctly handled to some extent. In other words, we’re protected on the data input side by the processing that happens at SpamCop to take out the redirection in reported URIs. SpamAssassin programs such as SpamCopURI and urirhdbl that us
