I was hoping for a bit more than that ;-). If I decide to include anonymous LDAP queries from the smtpd daemon, then I must assume that the daemon *will* be compromised, and a malicious third party will have at worst the ability to execute further anonymous LDAP queries of their own design. If I maintain good security procedures on the LDAP server, then it is easily possible to greatly limit what information may be queried (i.e. not passwords), and the only piece of information at risk is a list valid addresses on the system that is compromised. Not that I'm playing down the risk, but by the very nature of what we do, we accept a certain amount of risk in order to provide the services we do.
I'm not convinced that the security risk outweighs the potential benefits. If I'm wrong, then I'm hoping someone here (who has perhaps more programming experience than I, or more experience with qmail) will be able to help me understand why I'm wrong. Dave ----- Original Message ----- From: "Henning Brauer" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Thursday, December 13, 2001 7:00 PM Subject: Re: Instant bounce? > On Thu, Dec 13, 2001 at 06:55:06PM -0800, David Stults wrote: > > Has anyone ever tried hacking qmail-ldap to create an smtpd that can look up > > recipient addresses on the fly and generate "instant" bounces (kind of like > > That would violate qmail's modular design and thus being _very_ > questionable from a security view. > > > Or even better, is there just > > some huge security hole that would be opened up by doing it that I have > > missed? > > That would violate qmail's modular design and thus being _very_ > questionable from a security view. > > -- > * Henning Brauer, [EMAIL PROTECTED], http://www.bsws.de * > * BS Web Services, Roedingsmarkt 14, 20459 Hamburg, Germany * > Unix is very simple, but it takes a genius to understand the simplicity. > (Dennis Ritchie) >
