Re: opensmtpd / ldap unreliable

On Sat, May 26, 2018 at 08:16:28AM +0200, Gilles Chehade wrote: > please do so we have more people able to test Done, thanks. What are your thoughts design-wise on dealing with ldap not being available at startup? Should layer 7 issues (ldap auth failed, etc) be handled differently than

Re: opensmtpd / ldap unreliable

On Thu, May 24, 2018 at 11:45:40AM -0700, Paul B. Henson wrote: > > From: Gilles Chehade > > Sent: Wednesday, May 23, 2018 1:20 PM > > > > That's bad but could easily be fixed if you want to help us > > So I dropped in the latest table-ldap from git, and it still failed > authentications after

Re: opensmtpd / ldap unreliable

Hello, Thanks for this patch! I'm setting up a similar configuration. I'll have a test also. Regards. Christophe Le 05/24/18 à 20:45, Paul B. Henson a écrit : From: Gilles Chehade Sent: Wednesday, May 23, 2018 1:20 PM That's bad but could easily be fixed if you want to help us So I

Re: opensmtpd / ldap unreliable

> From: Gilles Chehade > Sent: Wednesday, May 23, 2018 1:20 PM > > That's bad but could easily be fixed if you want to help us So I dropped in the latest table-ldap from git, and it still failed authentications after an LDAP server outage. It looks like the check is only in the table_ldap_check

Re: opensmtpd / ldap unreliable

On 17:20 Wed 23 May, Allan Streib wrote: > "Paul B. Henson" writes: > > >> What you ask is a very general question: If A depends on B, and B is > >> missing, how do expect A to behave? > > > > In this specific case, I expect A to complain it was unable to contact > > B, to

Re: opensmtpd / ldap unreliable

> From: Gilles Chehade > Sent: Wednesday, May 23, 2018 1:20 PM > > That's bad but could easily be fixed if you want to help us Definitely; I'll pull the latest github head down and see if that fixes the LDAP connection recovery after startup issue, and then I can try any suggestions to make it

Re: opensmtpd / ldap unreliable

"Paul B. Henson" writes: >> What you ask is a very general question: If A depends on B, and B is >> missing, how do expect A to behave? > > In this specific case, I expect A to complain it was unable to contact > B, to continue initializing, return temporary failures for any >

Re: opensmtpd / ldap unreliable

On Wed, May 23, 2018 at 10:19:47PM +0200, Gilles Chehade wrote: > On Tue, May 22, 2018 at 06:13:23PM -0700, Paul B. Henson wrote: > > So I recently converted my opensmtpd server to use ldap as the backend > > for user authentication. It seems it's a bit untolerant to ldap issues? > > > > [...] > >

Re: opensmtpd / ldap unreliable

On Tue, May 22, 2018 at 06:13:23PM -0700, Paul B. Henson wrote: > So I recently converted my opensmtpd server to use ldap as the backend > for user authentication. It seems it's a bit untolerant to ldap issues? > yes most likely If the ldap server isn't available when opensmtpd is started, it

Re: opensmtpd / ldap unreliable

> From: justina colmena > Sent: Tuesday, May 22, 2018 9:08 PM > > Are they being started in the wrong order at boot time? The LDAP server in use is not running on the local openBSD system. It might not be available due to an underlying network issue or some other problem that temporarily

Re: opensmtpd / ldap unreliable

On Tue, 22 May 2018 18:13:23 -0700 "Paul B. Henson" wrote: > If the ldap server isn't available when opensmtpd is started, it says > it started: > > # /etc/rc.d/smtpd start Then apparently you should have done # /etc/rc.d/ldapd start or preferably # rcctl start ldapd first.

opensmtpd / ldap unreliable

So I recently converted my opensmtpd server to use ldap as the backend for user authentication. It seems it's a bit untolerant to ldap issues? If the ldap server isn't available when opensmtpd is started, it says it started: # /etc/rc.d/smtpd start smtpd(ok) But it isn't there: # ps -aux |