Re: Re(2): [IMail Forum] imail issue

[Patrick Mathews]

router and wan types apprised of what you saved for last, script guy will render details to me or directly to list for your questions so that we all can get sumpin ova heah!, oh, on second thought, instead of intelligent answers to your questions... i've got a question or two more..., look down in your answer for my questions in garish maroon: ----- Original Message ----- From: Daniel Donnelly To: [EMAIL PROTECTED] Sent: Wednesday, June 06, 2001 06:11 PM Subject: Re: Re(2): [IMail Forum] imail issue Pat, LDAP is an informational service, somewhat like the older Whois service, except it can provide more information. But it cannot provide any more than is entered for each user. By default (see Attributes tab for a user), this is their email address and name (the stuff you entered when the account was created, usually), 4 fields all together (pg 133!). Only when you enter more, will it be available (pg 134). Custom fields can also be added. ahh, if i am not verbose, i don't get in trouble, a parable for our times...  4 fields only and it doesn't matter if it's behind a firewall or not? Note that if you have the user right, "Hide from information services', enabled, IMail can have a lot of stuff, but it won't answer an LDAP request for that user. So the question is: Do you want to run the LDAP service and provide information about some or all of your users? Then which users? And then, what data (beyond the basic stuff) should be in the DB? aaron, local office maybe, external not yet Of course, all those people will need to know that you have an LDAP server, and how to access it (using their email client, typically), and then how to update any data (if you allow them to, again an IMail setting). Could mean a bit of work for the old troll teaching the 'farmers' fancy 'lectronic' stuff. again, aaron, let's get on the setting, i got TS on home box. Basically, if you don't enter the data, then even if they know all about LDAP, they won't get anything beyond the basics. But if you don't even run the LDAP service, then no one can get anything. Oh, lastly, if you are running LDAP service, be aware that ANYONE can gain access to it, unless you limit requests to only those IP addresses you want to have access. Typically this is done at your router or firewall. i'm router challenged, haven't done it since novellMPR '95 or so, any time i ax dose guys anyting dey wanna know about pawts. we're runnin' a pix, i think, understand those guys give me the 'need to know' biz, which IS understandable. most really successful cracks that i've caught in gov't and biz were always inside jobs. social engineering is so much easier for some than reading a book. which ports per addy strobe the ldap? or am i asking the wrong question? if my pix doesn't defend my server... i'm auditing, which is wonderful: i can see what i did wrong AFTER they fire my ignorant butt. thanks Dan, we might be calling in the morning...   Daniel Donnelly ________________________________________________________ ----- Original Message ----- From: "Patrick Mathews" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, June 06, 2001 4:19 PM Subject: RE: Re(2): [IMail Forum] imail issue <snip...snip> > i have a question that has been bothering me about LDAP and Imail: > <snip...snip> > point i'm making is: p136 in the manual (being stupid i read > manuals, it helps mitigate my stupidity) tells me that if i do what i did > (and i did) that i may want to populate the ldap directory. does this mean > that my 6500 hippies, yuppies, and farmers now are able to see server side > info on the client side? there's some things they don't really need to know > about each other... <and snip again...> Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list. An Archive of this list is available at: http://www.mail-archive.com/imail_forum%40list.ipswitch.com/