| 1 |
I'm doing some research and admit I'm at a bit of a loss in regard to |
| 2 |
LDAP. |
| 3 |
|
| 4 |
I currently manage my servers with DSA-ssh only access and manage |
| 5 |
virtual mail and local unix mail accounts with mysql, using the virtual |
| 6 |
mail setup. I've been very pleased with the setup and have even written |
| 7 |
some administrative tools to make administering email quite simple. |
| 8 |
However, recently I've been looking at LDAP to administer accounts on |
| 9 |
the server. I'm a bit confused though and could use some help. |
| 10 |
|
| 11 |
I would like to administer the mail accounts via LDAP, and I see some |
| 12 |
sparse examples, though it is well documented in the postfix docs. I'm |
| 13 |
sure I could get it up and running, but the end goal would be to use a |
| 14 |
GUI desktop app to allow our non-techie desk jockeys to modify email |
| 15 |
account settings, store customer account information and personal |
| 16 |
address books. Is this even possible? Or am I right back to creating |
| 17 |
more cl scripts just using ldap as a backend. |
| 18 |
|
| 19 |
Also, LDAP is a bit unwieldy. There appears to be no clear method for |
| 20 |
creating schemas, and the lingo is entirely cryptic. It's damn near like |
| 21 |
having to create your own damn dtd to just publish a web page, I fail to |
| 22 |
see the usefulness of this. |
| 23 |
|
| 24 |
There also appears to be a new configuration that uses an ldap schema. |
| 25 |
It appears to complicate a fairly simple configuration process. I'm not |
| 26 |
sure what the goal was in this. Is openldap moving in the direction of |
| 27 |
completely bizarre and unusable, or does this actually serve some useful |
| 28 |
function? Reading through their documentation, I don't read any valid |
| 29 |
argument for changing a ~20 line configuration to something entirely |
| 30 |
impossible to change with any ease. |
| 31 |
|
| 32 |
Also, I see they have a default using bdb on the backend. I've gone away |
| 33 |
from bdb because it breaks servers frequently. Minor version bumps often |
| 34 |
break compatibility. Is there a good, fast alternative? |
| 35 |
|
| 36 |
Another note. For heavy loads, I use proxy:mysql to connect from |
| 37 |
postfix, since it creates a persistent connection. Can I use proxy:ldap |
| 38 |
to achieve the same thing? Or is this even necessary with ldap? In my |
| 39 |
current setup, I can handle around 500,000+ emails per day, since there |
| 40 |
isn't much mysql overhead with the persistent connection. |
| 41 |
|
| 42 |
Any feedback is greatly appreciated. |
| 43 |
|
| 44 |
Wendall |
| 45 |
|
| 46 |
-- |
| 47 |
Only wimps use tape backup: _real_ men just upload their important stuff |
| 48 |
on ftp, and let the rest of the world mirror it ;) |
| 49 |
-- Linus Torvalds |
Archives