Hello,
I have a problem authenticating one of my qmail-ldap servers against the LDAP database. The goal: Use RCPTCHECK (requires qmail-smtpd to access the directory). The problem: qmail-smtpd doesn't seem to access the directory in a useful fashion... In my directory, I have a user for qmail-ldap who can auth, and and access a subtree of the directory with "read" privileges where the information pertaining to email users is stored. Of course, the bind DN isn't in the same subtree as the normal email user stuff. When I look into the ldap log, I only see anonymous binds. Looking at qmail/controls, I don't even see access to the world-readable ldaplogin file. The result of these anonymous binds only is that qmail-ldap decides that the address I'm trying to send to doesn't exist, and no mail gets sent. Is there another way of doing it, besides allowing read also for anonymous binds? I'm willing to maintain another user in the directory with a different password if that's the only way. The other problem is that saying this in qmail-smtpd.rules does not yield the expected logging volume, but eg. no information about LDAP access at all: :allow,LOGLEVEL="511",RETURNMXCHECK="1",NOPBS="",MAXRCPTCOUNT="5",RCPTCHECK="1",REJECTEXEC="1",SANITYCHECK="1",TARPITCOUNT="5",TARPITDELAY="30",BLOCKRELAYPROBE="1",QMAILQUEUE="/var/qmail/bin/qmail-scanner-queue.pl" Trying to leave out the quotes resulted in startup errors like eg. illegal value for NOPBS which still does not get logged as an option, and, connecting from localhost doesn't work at all despite binding to 0.0.0.0. This is 20040401 on Debian "unstable". Best, --Toni++
