Brendon Colby wrote: > > On Wednesday 04 June 2003 13:50, Andre Oppermann wrote: > > We are working on the following things for qmail-ldap: > > > > - add ldap group handler for mail to ldap group (group can be DN, list > > with mail addresses or an ldap search string (very powerful but also > > very dangerous...)) > > > > - control file information in ldap done the right way > > Does this mean you will roll the qmail-ldap-control into the qmail-ldap patch > itself? If so, hopefully this would mean that a person wouldn't have to 'svc > -du /service/qmail-send' to get qmail-send to re-read controls (as opposed to > svc -h). I could never get that to work right anyway.
We wont roll qmail-ldap-control patch into qmail-ldap as it is too "ugly" coded for our standards. We will do our own ldap control implementation. HUP to qmail-send will work but don't need it often. Actuall it will be a daemon hung off qmail-send. It will regenerate all the control files from ldap every so often. > > - qmail-reply autorespond limiter > > Great! > > > - admin web interface with full admin subdelegation capabilities > > (PHP4 based) > > We are going to being working on a web interface for our mail system. I have > decided that it won't interface directly to out LDAP server but to a mysql > database rather, as a gateway (this method works quite well in my > experience). Perl, of course, will take care of modifying the LDAP databases. > > We'll have quite a granular authorization capability (down to the e-mail > address level). I may want customer service to be able to change every e-mail > but my own. Also, this would extend to the attribute level as well. I don't > want someone changing the mail server attribute. Customers would presumably > be able to login and manage their own domain / e-mail address (changing > passwords, creating new e-mail). Our web admin will have the same granularity features and more. You will be able to subdelegate almost anything to specific groups or roles relative to their point in the tree. Real distributed management. The only thing only the root admin (who can also be a role filled by more than one person) can do is to change the core mail server config. > Anyway, my point is if we can help with this side of things that would be > great. This would be a GPL release anyway. -- Andre
