Re: postfix + dns ldap srv

2009-11-04 Thread Victor Duchovni 
On Wed, Nov 04, 2009 at 08:17:13PM +0100, lst_ho...@kwsoft.de wrote:

> Zitat von Victor Duchovni :
>
>> On Wed, Nov 04, 2009 at 02:39:06PM -0200, maximatt wrote:
>>
>>> Postfix support dns srv registers... for ldap service?
>>
>> If you need to define your LDAP servers in SRV records, you can
>> run a cron job that queries DNS, and rebuilds your "map.cf" files
>> based on an updated server list.
>>
>> There is no support in Postfix for using SRV records to find LDAP servers.
>>
>> What standard defines SRV records for LDAP?
>
> Maybe the OP is referring to Microsoft Active Directory where some special 
> records exists in DNS to find the domain controller which are in turn LDAP 
> servers with records for the domain users and their attributes like 
> mailaddress??

Is support for:

_ldap._tcp.example.com

enough? Is this sufficiently well standardized?

What should the user interface be? Right now we have:

server_port = 389
server_host = hostname ...
server_host = ldap://hostname:389 ...
server_host = ldaps://hostname:389 ...

Unless there is an LDAP URI syntax that indirects through SRV records
implemented in the OpenLDAP library, Postfix would need a new syntax
to trigger the construction of a URI list from DNS.

I think it would be much simpler to write a cron job, than to ask Postfix
to determine the server list on the fly. Ugly issues creep in if DNS
queries time out, or temp-fail... This is much easier to handle in a
cron job that simply leaves previous settings untouched...

-- 
Viktor.

Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the "Reply-To" header.

To unsubscribe from the postfix-users list, visit
http://www.postfix.org/lists.html or click the link below:


If my response solves your problem, the best way to thank me is to not
send an "it worked, thanks" follow-up. If you must respond, please put
"It worked, thanks" in the "Subject" so I can delete these quickly.

Re: postfix + dns ldap srv

2009-11-04 Thread lst_hoe02 

Zitat von Victor Duchovni :


On Wed, Nov 04, 2009 at 02:39:06PM -0200, maximatt wrote:


Postfix support dns srv registers... for ldap service?


If you need to define your LDAP servers in SRV records, you can
run a cron job that queries DNS, and rebuilds your "map.cf" files
based on an updated server list.

There is no support in Postfix for using SRV records to find LDAP servers.

What standard defines SRV records for LDAP?


Maybe the OP is referring to Microsoft Active Directory where some  
special records exists in DNS to find the domain controller which are  
in turn LDAP servers with records for the domain users and their  
attributes like mailaddress??


Regards

Andreas

Re: postfix + dns ldap srv

2009-11-04 Thread Victor Duchovni 
On Wed, Nov 04, 2009 at 02:39:06PM -0200, maximatt wrote:

> Postfix support dns srv registers... for ldap service?

If you need to define your LDAP servers in SRV records, you can
run a cron job that queries DNS, and rebuilds your "map.cf" files
based on an updated server list.

There is no support in Postfix for using SRV records to find LDAP servers.

What standard defines SRV records for LDAP?

-- 
Viktor.

Disclaimer: off-list followups get on-list replies or get ignored.
Please do not ignore the "Reply-To" header.

To unsubscribe from the postfix-users list, visit
http://www.postfix.org/lists.html or click the link below:


If my response solves your problem, the best way to thank me is to not
send an "it worked, thanks" follow-up. If you must respond, please put
"It worked, thanks" in the "Subject" so I can delete these quickly.

postfix + dns ldap srv

2009-11-04 Thread maximatt 
hi...

Postfix support dns srv registers... for ldap service?

thanks in advance :)

-- 
Salu2 ;)