Purging compromised reply-to IDs
Use the NewsMailinService commands to delete compromised reply-to IDs from the system and ensure that replies are received from secure IDs only. If a particular reply to ID is being misused, you can delete that ID from the system while keeping the user’s other valid IDs active.
Before you begin
To run administrative commands, you must use the wsadmin client. See Starting the wsadmin client for details.
About this task
The ReplyToIdCleanup task also runs weekly to purge the system of any reply-to ID records that are out of date. This task removes any IDs that are older than the interval specified by the replyToIdLifetimeInDays property. The expiry period is set to 365 days by default. The ReplyToIdCleanup task removes any ReplyToNotification IDs that have expired so that it is no longer possible for users to reply to the forum topic from the email notification. All related reply-to IDs are also removed as part of the clean-up task. Note that the task does not perform any security checking for comprised or corrupted IDs. For information about how to configure the ReplyToIdCleanup task, see Configuring database clean-up for the News repository.
id@connections.example.com
id_mailin@connections.example.com
For
example: c0c7e9bf-32d9-48a7-933c-74794479ebf3_replyto@connections.example.com
You can customize reply-to IDs if you want. For instance,
instead of using the ID as a prefix as in the example, you can include
it as a suffix. For example: replyto_c0c7e9bf-32d9-48a7-933c-74794479ebf3@connections.example.com
Procedure
- Start the wsadmin client from the following
directory of the system on which you installed the Deployment Manager:
where app_server_root is the WebSphere® Application Server installation directory and dm_profile_root is the Deployment Manager profile directory, typically dmgr01.app_server_root\profiles\dm_profile_root\bin
You must start the client from this directory or subsequent commands that you enter do not execute correctly.
- Start the Jython script interpreter for the News repository.
- Use the following commands:
- NewsMailinService.removeReplyToId("replyto address ID")
Removes a single reply-to ID.
This command takes a single parameter, which is a string that specifies the reply-to ID that you want to delete.
For example:NewsMailinService.removeReplyToId("c0c7e9bf-32d9-48a7-933c-74794479ebf3")
- NewsMailinService.removeReplyToIdsForUserExtId("user extId")
Removes all the reply-to IDs for the user with the specified external ID.
This command takes a single parameter, which is a string that specifies the external ID for the user whose reply-to IDs you want to delete.
For example:NewsMailinService.removeReplyToIdsForUserExtId("91b3897d-b4f8-4d05-3621-50bcaa22d300")
- NewsMailinService.removeReplyToIdsForUserEmail("user email")
Removes all the reply-to IDs for the user with the specified email address.
This command takes a single parameter, which is a string that specifies the email address for the user whose reply-to IDs you want to delete.
For example:NewsMailinService.removeReplyToIdsForUserEmail("mary_smith@example.com")