I wanted to check that this would be basically sound practice…
We have a small use RT system, and it’s getting a lot of spam,
and we’d like manual control over the users that can view the tickets
inside the system for other reasons anyway.
I could set up spamassassin/spambayes, but I thought to kill two birds
with one stone, and only allow pre-approved users access and
Would the simplest way to do this be to deny ‘everyone’ all rights,
make one or more groups that have the basic rights (create ticket,
seequeue etc), and assign users that we want in the system to the new
Will this stop ‘spam’ and other unauthorised users creating accounts
on the system automatically when they try (and fail) to create a
mentions that whenever anyone mails RT, it creates an account for them.
Basically, what I’m after is the ability to either stop that happening,
make it reliant on my approval,
or a reason why this isn’t a good approach.
Apologies for the basic nature of the question. I could not find the
right answers on the wiki or in the mailing list archives. Must be a