Re: [courier-users] LDAP feature sugestion ( Feature Request )

Fri, 24 Jan 2003 10:28:35 -0800 

> way, we can create correct databases with standard OpenLDAP scheme like
> 'dc=domain,dc=com' and other database 'dc=domain2,dc=net', etc.

        I tried that.  It was worthless for practical use (for Postfix,
Exim, Courier, Apache, and NIS PAM).  For example, a simple lookup using
ldap://blah/$domain/$local_part in Exim now becomes a complicated
headache, and there are further limitations in Postfix.

        We had a discussion about it on the OpenLDAP list a month or so
ago.  The responses I got when asking about it were basically "it's a
standard, and it's good to follow standards".  But it's not really a
standard; it's a convention inherited from X.500 and I find no use in it
with the singular exception of sharing out your company's LDAP data to a
global directory service.

        Other responses were "it sounds like your client LDAP apps are not
very configurable", because it was so much easier to NOT use the
dc=domain,dc=tld scheme.  Apache and Exim lack many things, but
configurability is not one of them.

> That way I can keep things more secure and organized.

        This is offtopic, but if you could send me a private message
explaining how the dc=domain,dc=tld scheme is any more secure (or
organized, for that matter) I would appreciate it.  Or perhaps you were
just refering to have separate servers for different domains?


        As to your question, OpenLDAP can defer particular sub-DNs to
sub-servers.  So you could specify one top-level server for all your
Courier daemons and then have the top-level server defer to other LDAP
servers for particular sub-domains.  That way you could have one standard
config file for Courier, and you would also be able to move data around to
different servers without reconfiguring anything.


Thanks,
Derek Simkowiak



-------------------------------------------------------
This SF.NET email is sponsored by:
SourceForge Enterprise Edition + IBM + LinuxWorld = Something 2 See!
http://www.vasoftware.com
_______________________________________________
courier-users mailing list
[EMAIL PROTECTED]
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Reply via email to