Xavier,
> I'd like to get the right way to user @local_domains_acl with LDAP.
> I currently have some stuff like this :
>
>
> ldapsearch -h 127.0.0.1 -b ou=maildomain,dc=kazar,dc=net
> associatedDomain=openvisp.fr
> # extended LDIF
> #
> # LDAPv3
> # base <ou=maildomain,dc=kazar,dc=net> with scope subtree
> # filter: associatedDomain=openvisp.fr
> # requesting: ALL
> #
>
> # openvisp.fr, maildomain, kazar.net
> dn: associatedDomain=openvisp.fr,ou=maildomain,dc=kazar,dc=net
> objectClass: top
> objectClass: kazarPerson
> associatedDomain: openvisp.fr
> MXTransport: smtp:[mx1.oav.net]
>
> How to can I use this as LDAP query to check if the domain is inside
> @local_domains_acl.
> I have read README.lookups and their friends, but LDAP is quite non
> existant, and I still don't understand how on my system I can use it.
There is a README.ldap. Add to amavisd.conf the:
$enable_ldap = 1;
$default_ldap = {
...
};
and adjust options within $default_ldap, in particular the query_filter.
Unfortunately amavisd only provides a recipient's address (as %m)
in a form of a domain name (a.b.c.example.org), and not in a
form of a ou, dc, ... components. I don't know what would be the
best way to make a query expression out of the recipient's address,
someone more familiar with LDAP might be able to help.
Assuming the above is somehow resolved, the rest is straightforward.
If the query (on domain or on a particular user) returns a boolean
attribute amavisLocal, then its value tells amavisd whether the
recipient is local or not.
There is a suitable default for absence of the attribute amavisLocal
as described in README.ldap, which essentially means that as long as
an entry is found (even if it does not provide amavisLocal attribute),
this suffices for the recipient to be considered local. So as long
as you have all your domains listed in LDAP (and queryable by the
usual e-mail address), that suffices.
Mark
------------------------------------------------------------------------------
Come build with us! The BlackBerry(R) Developer Conference in SF, CA
is the only developer event you need to attend this year. Jumpstart your
developing skills, take BlackBerry mobile applications to market and stay
ahead of the curve. Join us from November 9 - 12, 2009. Register now!
http://p.sf.net/sfu/devconference
_______________________________________________
AMaViS-user mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/amavis-user
AMaViS-FAQ:http://www.amavis.org/amavis-faq.php3
AMaViS-HowTos:http://www.amavis.org/howto/
