[Minor] Implement multibase prefixes for IPFS gateway URL rule

author twesterhever <40121680+twesterhever@users.noreply.github.com>

Sun, 6 Nov 2022 14:41:55 +0000 (14:41 +0000)

committer GitHub <noreply@github.com>

Sun, 6 Nov 2022 14:41:55 +0000 (14:41 +0000)
author twesterhever <40121680+twesterhever@users.noreply.github.com>
Sun, 6 Nov 2022 14:41:55 +0000 (14:41 +0000)
committer GitHub <noreply@github.com>
Sun, 6 Nov 2022 14:41:55 +0000 (14:41 +0000)
diff --git a/rules/regexp/misc.lua b/rules/regexp/misc.lua

index 47b8f74a9c45d874710859653bc2e587d4730a42..940a9187e04b96b8e71f97d49891f7e867606df3 100644 (file)
--- a/rules/regexp/misc.lua
+++ b/rules/regexp/misc.lua
@@ -105,8 +105,8 @@ rspamd_config:register_dependency('LEAKED_PASSWORD_SCAM', 'BITCOIN_ADDR')
  -- These contain "ipfs" somewhere (either in the FQDN or the URL path) and a
  -- content identifier (CID), comprising of either "qm", followed by 46 alphanumerical
  -- characters (CIDv0), or a CIDv1 of an alphanumerical string of unspecified length,
--- depending on the hash algorithm used.
-local ipfs_cid = '/(qm[a-z0-9]{44}|[a-z0-9]{45,256})/{url}i'
+-- depending on the hash algorithm used, but starting with a multibase prefix.
+local ipfs_cid = '/(qm[a-z0-9]{44}|[079fFvVtTbBcChkKzZmMuUP][a-z0-9]{45,256})/{url}i'
  local ipfs_string = '/ipfs(\\.|-|_|\\/|\\?)/{url}i'
  reconf['HAS_IPFS_GATEWAY_URL'] = {
    description = 'Message contains InterPlanetary File System (IPFS) gateway URL, likely malicious',
author	twesterhever <40121680+twesterhever@users.noreply.github.com>
	Sun, 6 Nov 2022 14:41:55 +0000 (14:41 +0000)
committer	GitHub <noreply@github.com>
	Sun, 6 Nov 2022 14:41:55 +0000 (14:41 +0000)