Hi Devdas,
Couple of ideas:
1. It'd be simpler to stick to LDAP since that is likely to remain as
a standard for user-type databases. Most protocol implementations
(e.g. SMTP, POP3, IMAP4, HTTP, PAM, etc) handle LDAP authentication
out of the box. The same is not true of PgSQL or MySQL (or any other
SQL implementation).
2. It's possible to do a soft migration by using PgSQL as the backend
database for OpenLDAP. That way you get to eat your cake and have it
too. Servers which understand PgSQL auth can use PgSQL directly (with
appropriate views) for auth and servers which don't can still use the
LDAP interface. Once you've migrated all servers to use the PgSQL
auth, you can do away with LDAP altogether. Or maybe not: I still
have to see a PGSQL:// equivalent URI akin to LDAP:// for net-oriented
searches.
3. Do have a look at VishwaKarma. It does most of the things you
want, using LDAP. Version 2 is in the works, and I'd be happy if
someone can spend some time to help me finish it and locate some basic
packages which I can steal and put into VishwaKarma.
http://kandalaya.org/
Regards,
-- Raju
>>>>> "Devdas" == Devdas Bhagat <[EMAIL PROTECTED]> writes:
Devdas> I am currently in the process of implementing LDAP for
Devdas> user auth/mail. Setup is to be: Postfix + OpenLDAP 2.0.7
Devdas> + Imap (this I haven't decided) + Gnupop3d + Proftpd with
Devdas> mod_ldap and mod_quota. However we are also planning to
Devdas> switch from a NT based RADIUS to a Linux based one, with a
Devdas> Postgres DB as backend. Since most of the information in
Devdas> LDAP will be duplicated in Postgres as well, I am
Devdas> considering dropping LDAP and replacing it entirely with
Devdas> Postgres. The following two points come in favour: a) No
Devdas> duplication of data b) One service less to handle and
Devdas> secure Can anyone point out the cons of replacing LDAP
Devdas> with the Postgres DB?
Devdas> Scenario: ISP, currently around 2500 subscribers. We offer
Devdas> virtual hosting, with email and limited disk space. We
Devdas> also are into broadband, and planning to implement PPPoE.
Devdas> We may support mailing lists for our clients, and offer
Devdas> other services like video
Devdas> streaming/broadcasting/multicasting (take your pick of
Devdas> term, at 1 am, I don't wish to argue about this). Right
Devdas> now, it seems likely that clients will be billed to access
Devdas> these video servers. This functionality will have to be
Devdas> added into the chosen backend as well.
Devdas> An address book with a web based frontend and Postgres
Devdas> backend is already in place.
Devdas> So can I replace the proposed scenario with: Postfix (does
Devdas> this support a Postgres backend, or do I have to code it
Devdas> in?) + Postgres 6.5 [Currently installed] + IMAP (recos?)
Devdas> + Gnupop3d + Proftpd with mod_quota and mod_pgsql.
Devdas> Also, has anyone hacked SSL support into Postfix and/or
Devdas> gnupop3d?
Devdas> I'll be rather busy coding for some weeks, so if you could
Devdas> please cc me @ [EMAIL PROTECTED] , I'll be most
Devdas> grateful.
Devdas> Devdas Bhagat -- QOTD: "He's on the same bus, but he's
Devdas> sure as hell got a different ticket."
Devdas> ps: Suresh, you still haven't mailed me about the CAUCE
Devdas> stuff you had mentioned earlier (when I was having exim
Devdas> problems).
Devdas> pps: Apologies for the long mail.
--
Raju Mathur [EMAIL PROTECTED] http://kandalaya.org/
----------------------------------------------
The mailing list archives are available at
http://lists.linux-india.org/cgi-bin/wilma/linux-india-help
