Hi
I believe the pattern should be "www.yahoo.com.*"
(here, .* matches any string of characters).
Also be sure to choose the correct context for your attack (http-url in this case).
By the way, you can do the same with web filtering feature which is free of charge
for local black/white lists.