Holger Librenz wrote: > Hi. > > My DSPAM runs now on the new system too. Many thanks to the guys > maintaining packages.kirya.net! > > I used the server switch to modify and improve some configs and > "administrative concepts". One of the planned changes is denying the > anonymous / unbind read access to the LDAP directory. It might be a kind > of paranoia setting, but it will increase system security a bit more. > > Checking the configs, documentations and the code of DSPAM I recognize > that DSPAM does not support LDAP binding. It just requires a > world-readable LDAP directory. This is possible, it is the default > setting in OpenLDAP. But by using e.g. Active Directory this can be more > problematic. > > My question is, is there a plan to improve the LDAP functions of DSPAM? > Is this problem known? As the LDAP is not really much documented, can I > help by testing and / or documenting? > > Best regards, > Holger > >
Hello Holger, That will depend on the version of DSPAM you are running. If you use anything >= 3.9 alpha, such as the packages you refer, which are apparently beta1, you can use the ExtLookup* directives. The ones allowing you to bind non-anonymously to the LDAP server are provided as example in dspam.conf ExtLookupLogin "cn=admin,dc=domain,dc=com" # Login to be used when connecting to any direct database backend. ExtLookupPassword itsasecret # Password to use with ExtLookupLogin. Best regards, Hugo Monteiro. -- ci.fct.unl.pt:~# cat .signature Hugo Monteiro Email : [email protected] Telefone : +351 212948300 Ext.15307 Web : http://hmonteiro.net Centro de Informática Faculdade de Ciências e Tecnologia da Universidade Nova de Lisboa Quinta da Torre 2829-516 Caparica Portugal Telefone: +351 212948596 Fax: +351 212948548 www.ci.fct.unl.pt [email protected] ci.fct.unl.pt:~# _ ------------------------------------------------------------------------------ Come build with us! The BlackBerry® Developer Conference in SF, CA is the only developer event you need to attend this year. Jumpstart your developing skills, take BlackBerry mobile applications to market and stay ahead of the curve. Join us from November 9-12, 2009. Register now! http://p.sf.net/sfu/devconf _______________________________________________ Dspam-user mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/dspam-user
