Hello, I am setting up a qmail-ldap system for 17k e-mail users, and I am trying to decide what LDAP server to use: OpenLDAP or tinyldap (http://www.fefe.de/tinyldap/).
In my research I have read/heard all sorts of terrible things about OpenLDAP. I would like to avoid it if possible. However, people seem to agree that if you setup the server correctly and use replication you can massage it into working for you. Tinyldap seems like better software, although it is young. The main "problem" with tinyldap is that it does not have single-record write ability; you have to rebuild the entire database in a single shot. This is not a problem for me: I can setup my system to store the user data in SQL and dump that to LDIF and then rebuild the tinyldap database with every change. I know this is a pain, but I'd rather have this well-defined pain than the unknown pain of OpenLDAP doing weird stuff on me. :-) These are my questions: Is anyone using tinyldap in production with qmail-ldap? Does tinyldap support all of the LDAP features (specifically search features) required by qmail-ldap? Since qmail-ldap uses the OpenLDAP client libraries, are there going to be subtle compatibility errors when it accesses a tinyldap server? (Think of all the protocol problems with IMAP where similarly broken clients and servers talked to each other fine, but broken clients had trouble with fully correct IMAP servers.) Any other advice on tinyldap or OpenLDAP? Thanks! David
