hi,
Some of our exim users filter spam email into log files using the Exim
Filter interface by doing regular expression matches on the $message_body
expansion variable. The message_body_visible compiled in limit of 500
characters seems sensible as to not consume a large amount of resources
checking through email body contents.
A fair amount of spam email seem to have common endings in the message body,
for example they masquarade as mailing lists that you have not subscibed
to.. obviously they hope people feel the need to unsubscribe and therefore
use this to harvest correct email addresses.
So, rather than just upping the message_body_visible limit, maybe a new
expantion variable would be useful possibley something like
$message_body_end to check the last X number of characters in a message
body.
Im not sure how problematic this would be, its just a suggestion ;)
Many Thanks
Paul Kelly
__________________________________________________
Paul Kelly Some Day Now!
pkelly@??? www.virtual.org.uk
--------------------------------------------------
--
*** Exim information can be found at
http://www.exim.org/ ***