On Thu, 8 Jul 2004, Bill Maidment wrote:
[EMAIL PROTECTED] wrote:
> Use sendmail to call an LDAP directory to verify addresses. I'm still > working on the LDAP directory, so don't ask me how to configure sendmail! > Since we filter for over 20 domains not under our control, I want the > information to be available in real time.
We tried that, but found that LDAP was way too slow. Let me know if you get it going at a reasonable speed.
I don't know how to do this with multiple domains, but for a single domain, I've found that nscd does the trick (on Linux). If sendmail can check for users using getpwent or related tool, and ldap is set up for that in /etc/nsswitch.conf) then uid's and usernames will cache well.
One question is the extent to which "real time" is really needed and how frequently ldap will be updated. A question is how things should behave if there are errors from the ldap server?
-j
-- Jeffrey Goldberg http://www.goldmark.org/jeff/ Relativism is the triumph of authority over truth, convention over justice Hate spam? Boycott MCI! http://www.goldmark.org/jeff/anti-spam/mci/ _______________________________________________ Visit http://www.mimedefang.org and http://www.canit.ca MIMEDefang mailing list [EMAIL PROTECTED] http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
