On Wed, Sep 18, 2002 at 11:42:03AM +0300, Mike Jackson wrote: > Turbo Fredriksson ([EMAIL PROTECTED]) wrote: > > >>>>> "Mike" == Mike Jackson <[EMAIL PROTECTED]> writes: > > > > Mike> Kristof Bajnok ([EMAIL PROTECTED]) wrote: > > >> Hi, > > >> > > >> does qmail-ldap support LDAPS? If it does not, is it planned in > > >> the near future (anybody working on?)...? > > > > Mike> Hi, It is not currently implemented. I will take a stab at > > Mike> it and see if I can get something working. If so, I'll post > > Mike> a patch to the list. > > > > I implemented that about six-seven months ago in my Controls patch... > > That and SASL authentication (not finished though - nobody cared). > > > Cool. Then it is already done. Can we get some word from the leaders on > why none of these patches are being accepted? LDAPS or TLS, is pretty > important if you are using a remote LDAP server for auth_*. >
If you can not trust your network (backbone) you should move the ldap server. Use e.g. a secure replication to all mailservers. For every mail and auth_request a new connection has to be setup to the ldap server. The tls/ssl connection overhead would delay everything and cause a tremendous load on the mail server and the ldap server becasue of the many short request. > Maybe they have better things to do and are not further interested in > developing Qmail-LDAP. If so, it's under the BSD license... > The complete rework of the qldap-ldaplib is on my todo list. The problem is that I haven't worked with ldap for long time and so it will take some time. -- :wq Claudio
