-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 09/16/2006 01:00 PM, dewi escreveu:
> Greetings all!
> I have spent about 3 days searching for information on how to actually
> implement filtersender into my qmail groups with qmail-ldap and can't
> find any good information other than "it can be done".
> Does anyone have working examples they can point me at to build the
> correct filter to protect my groups?
> Example setup for my group structure is shown below in case anyone has
> any suggestions:
> directory server is Openldap: [actual top level object modified for
> security purposes]
>
> dn: cn=informationtech dept,ou=groups,ou=internal,o=whatever
> objectClass: posixGroup
> objectClass: sambaGroupMapping
> objectClass: qmailUser
> objectClass: qmailGroup
> cn: informationtech dept
> gidNumber: 1060
> creatorsName: cn=Manager,o=whatever
> createTimestamp: 20040818173855Z
> sambaSID: S-1-5-21-2120689171-301558341-470302987-3437
> sambaGroupType: 2
> displayName: InformationTech Dept
> description: teachers of Information Technology
> memberUid: flynnm
> memberUid: dewi
> memberUid: alistair.hardie
> mail: [EMAIL PROTECTED]
> mailHost: palantir.whatever
> mailMessageStore: /var/qmail/maildirs/information_technology_dept
> uid: information_technology_dept
> structuralObjectClass: posixGroup
> entryUUID: 4f39215a-9ff6-1029-84ae-ec6292b5a533
> mailAlternateAddress: [EMAIL PROTECTED]
> membersonly: TRUE
> filtersender: (CN=staff,OU=Groups,ou=internal,o=whatever.)
> entryCSN: 20060916032044Z#000001#00#000000
> modifiersName: cn=Manager,o=whatever
> modifyTimestamp: 20060916032044Z
>
> So I want the group "staff" to be able to send email to the group
> InformationTech Dept. The group staff has the same setup and uses
> memberUid to pull in our staff members in the same way.
>
> Please please send any help yuo can, my forehead is becoming very sore
> from banging my head againgst the desk and screen!
You should use regular ldap filter expressions, like:
(&(objectClass=qmailUser)(gidNumber=100))
Everybody with a qmailUser and member of the group
with gidnumber=100 are able to send e-mails.
Read the documentation in QLADGROUP because there
is a special behaviour with 'filtersender' when you enable
'membersonly'.
I hope this helps.
Kind regards,
- --
Felipe Augusto van de Wiel <[EMAIL PROTECTED]>
Coordenadoria de Tecnologia da Informação (CTI) - SEDU/PARANACIDADE
http://www.paranacidade.org.br/ Phone: (+55 41 3350 3300)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (GNU/Linux)
Comment: Using GnuPG with Debian - http://enigmail.mozdev.org
iD8DBQFFDoyyCj65ZxU4gPQRAnxKAKCq64R9rl6BVHd07sPjmlnAGVGWggCgh9Wd
GccCRbM7/Pwb24Dgq+X22o0=
=fMBL
-----END PGP SIGNATURE-----
