Stop abusers

Hello

I have just upgraded to RT3 from RT2

Was wondering how I can black list a user from the “everyone” group from
adding a ticket to the system.

This users system seems to be infected with a virus and I am getting huge
number of junk emails creating tickets in my system.

Also, while we are at it, how can I incorporate a spam / virus filter in RT?

Thanks for the help

I am enjoying this!!

Hari

I wrote some simple perl code to do this very thing.
It sits between sendmail and RT. You define what you
want to ignore, and it drops those messages without
poluting RT.
If you want, reply directly to me and I’ll provide the
code.— Hariharan hari@usva.artofliving.org wrote:

Hello

I have just upgraded to RT3 from RT2

Was wondering how I can black list a user from the
“everyone” group from
adding a ticket to the system.

This users system seems to be infected with a virus
and I am getting huge
number of junk emails creating tickets in my system.

Also, while we are at it, how can I incorporate a
spam / virus filter in RT?

Thanks for the help

I am enjoying this!!

Hari


rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users

Have you read the FAQ? The RT FAQ Manager lives at
http://fsck.com/rtfm

“I’m the Commander, see … I do not need to explain why I say things. That’s the interesting thing about being the President … [I] don’t feel like I owe anybody an explanation.” – President George W. Bush to the National Security Council

Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com

Hi,

Was wondering how I can black list a user from the “everyone” group from
adding a ticket to the system.

I wouldn’t know, but if you’ve given “everyone” the opertunity to create
tickets
You should revise your ACL setup, because giving everyone rights and then
revoking them is not very logical in my opinion :slight_smile:

This users system seems to be infected with a virus and I am getting huge
number of junk emails creating tickets in my system.

I’d blok him at mail server level, and not on RT level,
if you’re running sendmail you can do this in the access file

Also, while we are at it, how can I incorporate a spam / virus
filter in RT?

I think you could better incorporate this in your mail server that
runs on the box instead of your ticketing system, ticketing systems
are not meant for filtering spam and virus checking :wink:

I am enjoying this!!

You should :slight_smile:

Grtz Funs

Reject them in your /etc/mail/access file

Hostname/ip REJECT

Then
makemap hash /etc/mail/access < /etc/mail/access

Michael-----Original Message-----
From: Hariharan [mailto:hari@usva.artofliving.org]
Posted At: Friday, September 19, 2003 10:34 AM
Posted To: RT
Conversation: [rt-users] Stop abusers
Subject: [rt-users] Stop abusers

Hello

I have just upgraded to RT3 from RT2

Was wondering how I can black list a user from the “everyone” group from
adding a ticket to the system.

This users system seems to be infected with a virus and I am getting
huge
number of junk emails creating tickets in my system.

Also, while we are at it, how can I incorporate a spam / virus filter in
RT?

Thanks for the help

I am enjoying this!!

Hari

rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users

Have you read the FAQ? The RT FAQ Manager lives at http://fsck.com/rtfm

This will work however you will stop all mail from that person. Also if you
are going to implement an access list I would also recommend the following
as well to reduce SPAM on all of your mail servers.

Access map
Mailertable map
Aliases map
Virtusertable map-----Original Message-----
From: RT@InterCept.Net [mailto:RT@InterCept.Net]
Sent: Friday, September 19, 2003 7:46 AM
To: hari@usva.artofliving.org
Cc: rt-users@lists.fsck.com
Subject: RE: [rt-users] Stop abusers

Reject them in your /etc/mail/access file

Hostname/ip REJECT

Then
makemap hash /etc/mail/access < /etc/mail/access

Michael

-----Original Message-----
From: Hariharan [mailto:hari@usva.artofliving.org]
Posted At: Friday, September 19, 2003 10:34 AM
Posted To: RT
Conversation: [rt-users] Stop abusers
Subject: [rt-users] Stop abusers

Hello

I have just upgraded to RT3 from RT2

Was wondering how I can black list a user from the “everyone” group from
adding a ticket to the system.

This users system seems to be infected with a virus and I am getting
huge
number of junk emails creating tickets in my system.

Also, while we are at it, how can I incorporate a spam / virus filter in
RT?

Thanks for the help

I am enjoying this!!

Hari

rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users

Have you read the FAQ? The RT FAQ Manager lives at http://fsck.com/rtfm
rt-users mailing list
rt-users@lists.fsck.com
http://lists.fsck.com/mailman/listinfo/rt-users

Have you read the FAQ? The RT FAQ Manager lives at http://fsck.com/rtfm

Hi,

I have just gone through the process of filtering incoming e-mail
with SpamAssasin, using procmail as glue (not Mail::Audit or other
Perl modules). The general idea is that mails which are recognized
as potential spam are sent to a human for checking, those which
seem good go directly into RT.

Anyone interested in the details can mail me, and if I get many
requests I will mail to the list.

Dag Bruck
Dynasim AB, Sweden

Hi Stefan,

Maybe i missed something, but isn’t granting EVERYONE the right to CREATE
TICKETS the only way to have tickets created via email - given
you use RT as
a support system where the whole world is allowed to send emails to?

Well it is one of the ways you could do it, there are other ways, you can
grant people on a cetain queue these rights and not on all your queues for
instance… that will narrow down the problem quite a bit.

i mean, if you use it to have tickets created via email, you
basicaly never
know who will email you, so you can’t grant a person any rights - thus you
grant it to EVERYONE.

If you modify the mailgateway (which I’ve done on previous implementations
in other companies), you can let it submit e-mails from people that are
"anonymous" via a known user on the system.
This is acutally quite simple, you then put the “customer” in the CC field,
and it is very simple to add a little blacklist to this system, or even
easier, make an “anonymous” ticket gateway and setup an htaccess base on IP
or user or whatever you like on it (a guy I know did this and it works
really nice).

Or was your reply more of an academical nature?

What is your goal with this remark, as I do not fully understand ?

Cheers,

Funs