<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html; charset=windows-1252"
http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
I do something similar, just not with Exchange.<br>
<br>
With this system you're leaving the door open if
<a class="moz-txt-link-abbreviated" href="mailto:help@help.domain.com">help@help.domain.com</a> ever gets accidentally released into the wild.
I've been very careful so far and this hasn't been an issue.<br>
<br>
We talked about implementing iptables rules on the RT box that would
limit which machines it can receive email from in order to prevent
people from using <a class="moz-txt-link-abbreviated" href="mailto:help@help.domain.com">help@help.domain.com</a> and instead using
<a class="moz-txt-link-abbreviated" href="mailto:help@domain.com">help@domain.com</a> so mail goes through the proper path. We haven't
done it though, and so far keeping <a class="moz-txt-link-abbreviated" href="mailto:help@help.domain.com">help@help.domain.com</a> as a secret
all has been well.<br>
<br>
On 12/13/10 7:11 PM, Jason Knight wrote:
<blockquote
cite="mid:13B0572B5A795048800CC89ED4C817B50384973E25@SEADRAGON.llenergyinc.local"
type="cite">
<meta http-equiv="Content-Type" content="text/html;
charset=windows-1252">
<meta name="Generator" content="Microsoft Word 14 (filtered
medium)">
<style><!--
/* Font Definitions */
@font-face
{font-family:Calibri;
panose-1:2 15 5 2 2 2 4 3 2 4;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0in;
margin-bottom:.0001pt;
font-size:11.0pt;
font-family:"Calibri","sans-serif";}
a:link, span.MsoHyperlink
{mso-style-priority:99;
color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{mso-style-priority:99;
color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:"Calibri","sans-serif";
color:windowtext;}
.MsoChpDefault
{mso-style-type:export-only;
font-size:10.0pt;
font-family:"Calibri","sans-serif";}
@page WordSection1
{size:8.5in 11.0in;
margin:1.0in 1.0in 1.0in 1.0in;}
div.WordSection1
{page:WordSection1;}
--></style><!--[if gte mso 9]><xml>
<o:shapedefaults v:ext="edit" spidmax="1026" />
</xml><![endif]--><!--[if gte mso 9]><xml>
<o:shapelayout v:ext="edit">
<o:idmap v:ext="edit" data="1" />
</o:shapelayout></xml><![endif]-->
<div class="WordSection1">
<p class="MsoNormal">Just thought I’d throw this tip out there
if you are running Exchange in your environment. I have RT
configured on my CentOS 5.5 box, help.domain.com. My
/etc/alias file uses <a moz-do-not-send="true"
href="mailto:help@help.domain.com">help@help.domain.com</a>
for incoming requests into my main helpdesk queue. What I’ve
done with Exchange, that hosts for domain.com, is to create
the email <a moz-do-not-send="true"
href="mailto:help@domain.com">help@domain.com</a>, and a
contact for <a moz-do-not-send="true"
href="mailto:help@help.domain.com">help@help.domain.com</a>.
The newly created Exchange mailbox, <a moz-do-not-send="true"
href="mailto:help@domain.com">help@domain.com</a> forwards
to <a moz-do-not-send="true"
href="mailto:help@help.domain.com">help@help.domain.com</a>.
What this allows me to do is use delivery restrictions on the
Exchange account to limit the help desk to authenticated users
only, thus blocking outside requests. I know RT has it’s own
mechanism to do this, but this allows me to open it up easily
if I need to, and I can use LDAP authentication alongside
local users in RT.<o:p></o:p></p>
<p class="MsoNormal"><o:p> </o:p></p>
</div>
<br>
______________________________________________________________________<br>
This email has been scanned by the MessageLabs Email Security
System.<br>
For more information please visit <a class="moz-txt-link-freetext" href="http://www.messagelabs.com/email">http://www.messagelabs.com/email</a>
<br>
______________________________________________________________________<br>
</blockquote>
<br>
<br>
<pre class="moz-signature" cols="72">--
John Arends
<a class="moz-txt-link-abbreviated" href="mailto:jarends@illinois.edu">jarends@illinois.edu</a>
Network Analyst
College of ACES ITCS
University of Illinois at Urbana-Champaign</pre>
</body>
</html>