I am using Mailwasher version 3.3.0.
All the filters work OK except the body filter. I always take the "BODY" to mean the actual MESSAGE, yet when I enter body text into the filter, mailwasher ignores it. Can someone please put me right on this.
Thanks

Without some example of what kind of problem you are experiencing, it would be very difficult to give you any help.

You might want to post the example here. There are quite a few users who watch these forums and would be willing to help, but need more info.

Also...

If the part of the body that you are trying to filter on occurs past the point where MWP downloads, you will never trap anything. You might want to look at the message in MWP's Preview Pane in order to determmine if you have enough message being downloaded for the filter to trap it.

If I see a word, for example ENLARGE in the preview pane, on the first line. I create a filter and ask Mailwasher to detect ENLARGE in the body, but Mailwasher takes no notice of that filter in future bodys and displays them in the header list.

hyperscan,

Going to need a little more than that to go on...

Do you know how to find the 'filters.txt' file in your MWP data directory?

If you don't....in MWP goto HELP >> ABOUT. You will find a link at the bottom of that dialog box which will take you to the Data Directory (just below the checkbox for extended error logging).

Open the 'filters.txt' file and find your filter in there. The filters in this file are listed in the same order as they are in MWP's 'Filters' pane.

Copy the filter from the file and paste it into the message body entry box (post a reply) for the forum. Once you have it pasted, immediately select the text for the filter so that the entire filter test is highlighted.

With the filter text highlighted, click on the 'Code' button above the message entry box. You will see the following before and after the filter text:

[ code] (will be before the text..the first space will be missing)
[ /code] (will be after the text...the first space will be missing)

This will ensure that your filter is not translated by the BBCode or HTML translators. When you select PREVIEW you will see the filter code in a quote box as shown in the example below:

hyperscan,

There is one other thing that you need to be aware of concerning BODY filters.

The Spammers are more than aware of simple filters that look for words in the BODY, and have developed a few tricks to obfuscate those words so that simple text filters cannot find them.

One of those tricks is to use HTML to break up the words. Example:

Hi Denn
I think your last message answered my question.
Therefore I will examine the mail more closely over the next day or so and get back to you.

Here is the RAW body, complete with the hidden word (male organ), that I wanted to filter out:
<html>
<body>
<ktnqlqqcdbf><center>
<font face="verdana" size="+3">T<kwfedzsrymt>he o<kedhpnhdsgw>nly<ksxllbjbdwqir> so<kcpgbiwdwwykbwb>lut<kydeckycdngvpkb>ion to P<kopxxatdohx>en<klrtaljbmxzbhoc>is
E<kzbyfhdccncn>nl<kisdnxdhpmdvlcw>arge<kzdnptlgoxlvjdd>me<kzingtdbvgj>nt</font>
<br><font color="white">krlivjknjq wcyeptcsyptnlc</font><br>
<font size="+2" face="arial"><b><kkbyrtvexkxrpba><font color="#F30101"><kdaaooihflw>L<kcdaglocmbzza>IM<kujqkynhyjdsdcs>I<kicrbgeblpoc>TE<kptqngodopgfwn>D
<kpuhkopczaetvu>OF<kxmngaebisa>FE<kihxyrybthi>R:</font></b> A<kdadwquwhktic>dd at l<khovceabbnuzzv>east 3 I<kzzpwikbibaw>NCH<kkttcidnzxweb>ES or ge<kjvrhhlccavhfe>t y<klxmyesdkba>our mon<kugjsmjbjltozl>ey
bac<kkntotytiudfoc>k!
<br><font color="white">yrmrxfzvzv fngcfabeaf</font><kkzejzccyuys><br>
<table width="600"><kkmwsagfwzadeum>
<tr>
<td><kxmcdrbdjja>
<font face="arial">
<kjhqcnedwogffob>We a<karovmubzttaop>re s<kmuhdiicdtxv>o sur<kdpnmircqtca>e o<kzzzszjbiewlgr>ur p<klxvmgebvvybn>rod<kcxvqcjbvgfjloc>uct wo<kfwznhddidbfmd>rks w<kthpplbzdnefkd>e ar<klesrdacnjg>e wi<kvtpzocofnmm>lling to pr<ksfzszkddnh>ove
it b<khhxanxfnaidfy>y of<kdhaapibqkhbrx>fer<kjuqpvyhsuhyadj>ing a <b>f<krbvupchrfv>re<kfsuasedgtucweb>e t<kzlgfplxegpbrj>ri<kjhwikrdthpfqx>al b<kwmqkhsbjljr>ott<knqybshmdol>le</b> + a 1<kudvzrwdtlg>0<kpgmppsbqethydb>0%
<b>m<khbcqikdmxeffjd>on<kfwqyngupak>ey b<kfdzdovdpumcw>ack g<kfzwmurdfwvg>uar<kttyktdskumf>ante<kknnnqlhhru>e</b> u<kjfudodciwr>pon p<kjkzxpcdhmslu>ur<krwuhdvdkmwpz>cha<kqtlskzdjzedfic>se if y<kidrujkbvholx>ou ar<kjxmnwdcuhcvuhz>e
n<kpucdrfbrnzzk>ot sa<klarsqvbzqcwocb>ti<knktgveccbe>sfie<kbsgilocrvnvd>d w<krytudkclhhb>ith th<ksbeclpyfid>e r<kerylofenmdlq>esul<klqqcxgcqpzejzp>ts.
</td><kneknptdgpx>
</tr>

Thanks

hyperscan,

Untill MWP changes their program to allow the option of filtering either the RAW text or the TRANSLATED text, there is limited abilityto filter based on words in the body.

There is however something that you can do to help with the specific kind of obfuscation that the Spammer is doing in the example above.

Create a filter that looks into the BODY and contains the following Regular Expression:

hyperscan, actually filtering for the hidden word is difficult with the current MWP filtering capability. You would have to look for possible tags between each letter. And then you have managed to catch only that particular word or phrase. For example, take ENLARGE. A filter (untested) to look for that could be: