[rt-users] Avoiding backscatter & enabling self help

[Kurt Zeilenga]

We've been experimenting with RT this week at OpenLDAP.org for servicing various "help" and "contact" by email services... info at opendlap.org, webmaster at openldap.org, etc.   We have a general policy here at OpenLDAP.org to avoid email auto-responders, so as not to contribute to the backscatter problem.  But we also like "self help" services.

We presently have the 'On Create Autoreply To Requestors' scrip disabled.

I see there is a suggestion in the Wiki article <http://requesttracker.wikia.com/wiki/AutogeneratedPassword> for generating passwords on first create (from email) from the user, and including this in the autoreply on create message.  I'm wondering if I might apply this patch to the response ticket so that on response to a user without a password will cause a password to be generated.  That would provide some "self help" opportunities to the user.  Any thoughts on how best to do this?

For all other possible emails to the requestor, never send if the password hasn't ever been set.  Any thoughts on how to accomplish this?

Again, what we want is to never send an email to a requestor without a human generating a correspondence to that requestor (and hence setting up their password).  Until then, we want to assume the email had a forged from address.  Am I on the right track above?  or is there a better way to setup RT to behave in this manner?

FYI, I'm using RT 3.8.9 on FreeBSD 7-stable.

-- Kurt