On 2010-12-26 at 10:31 -0800, Cameron Hurst wrote: > ldap_bind() returned -1 > > The error shows that the macro expansion worked for me and that LDAP > failed to bind. A direct insert from the error log into "exim -be" and > it works without a problem. No errors no failures no nothing. Does > anyone have any suggestions about how I could look for the problem or > what it could possibly be?
I suspect system security lockdown via something like SELinux preventing the exim user from connecting out on a non-standard port, but permitting you, as a privileged real user, to do so. If temporarily disabling SELinux makes this work, then you know you need to either change the SELinux policy or change how you connect to LDAP. (Eg, since this is localhost anyway, you might try a unix-domain socket instead, which has the advantage that you can get rid of the password with the appropriate sasl-regexp directives (assuming OpenLDAP) to use SASL EXTERNAL based on the kernel-reported uid of the process connecting to the socket) -Phil -- ## List details at http://lists.exim.org/mailman/listinfo/exim-users ## Exim details at http://www.exim.org/ ## Please use the Wiki with this list - http://wiki.exim.org/
