RE: rcpthosts

[Corbey, Clayton]

-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED] Sent: Monday, January 23, 2006 08:52 To: qmail-ldap@qmail-ldap.org Subject: RE: rcpthosts   On Mon, 23 Jan 2006, Corbey, Clayton wrote:   > -----Original Message----- > From: Brian T Glenn [mailto:[EMAIL PROTECTED] > Sent: Saturday, January 21, 2006 17:45 > To: qmail-ldap@qmail-ldap.org > Subject: Re: rcpthosts >  > On Fri, Jan 20, 2006 at 01:13:25PM -0600, Corbey, Clayton may have > written: >>> Why doesn qmail-ldap not do lookups for all hosts in rcpthosts? >>>  >>> None of my users are on the qmail system, or a qmail system for that >>> matter. I want the lookups to be done and then the email forwaded (if >>> the lookup succedeed) to another server(Exchange, boo) internally > after >>> that. How can I configure qmail-ldap to do this? >  >> If all you want is a dumb relay server to scan mail for viruses, spam, >> etc., then send that mail to a backend, you will either need to make >> qmail-ldap talk to your Active Directory (unlikely, but theoretically >> possible), write a program to migrate users into OpenLDAP from AD, or >> just use stock qmail as a relay server with rcpthosts and smtproutes. >>  >> Cheers, >> -- >> Brian T Glenn >> delink.net Internet Services >  > I have achieved the unlikely but theoretically possible. My qmail works > exactly how you describe. >  > My 'dumb' server does all the scanning and then moves the email into the > server where the users store is located. >  > Now I want to do a lookup at the smtp level to reject email for invalid > users. >  > What I don't understand is why this is such a 'funny' or 'non standard' > way of doing things. Why can qmail-ldap do a lookup via another server > but won't function unless the user is located on the system it's running > on? If your rcpthosts file contains the domain, then who cares if locals > doesn't. It should treat them as the same; after all you are accepting > 'their' email. >  > It does the lookup on my internal PDC, then fails with a 451 saying the > user is forward only (or LDAP lookup failed temporarily). Yeah, so, > forward it then, look at my smtproutes and forward it; it only does this > if I have LDAPSOFTOK set. Then it forwards EVERYTHING! >  > As for using stock qmail, I don't want to, I want to scan for email that > is going to valid users; I want to make sure that the user is actually > there first before I accept the email. Stock qmail already got my server > tagged by SORBS; hence I'm trying to fix it now.   just to address this point on it's own: you can install or write your own patch to check for valid users for qmail pretty easy. If I was able to do it it seriously can't be very hard. Check www.qmail.org for chkuser patches if you are interested in this route.     brian -- Never be afraid to tell the world who you are.               -- Anonymous   09:45:01 up 7 days, 18:24,  1 user,  load average: 0.00, 0.00, 0.01   GREAT! Thanks Brian, I think I will be looking into that!   -Clayton