Re: SMTP relays with Postfix and LDAP

To: Russell Coker <russell@coker.com.au>
Cc: debian-isp@lists.debian.org
Subject: Re: SMTP relays with Postfix and LDAP
From: Craig Sanders <cas@taz.net.au>
Date: Fri, 20 Apr 2001 10:51:29 +1000
Message-id: <20010420105129.S1099@taz.net.au>
In-reply-to: <01041913524205.07243@lyta>; from russell@coker.com.au on Thu, Apr 19, 2001 at 01:52:42PM +0200
References: <01041913524205.07243@lyta>

On Thu, Apr 19, 2001 at 01:52:42PM +0200, Russell Coker wrote:
> I want to have some mail servers running Postfix which look at LDAP to 
> determine whether they should run as a secondary MX for mail domains.
> 
> Does anyone know how to do this?

dunno if it's possible to do that from LDAP directly, but it should
be possible to generate a hash or dbm or whatever map file for the
relay domains. generate it from a cron job, or whenever the LDAP db is
updated.

that would be a lot faster than LDAP lookups, too.

alternatively, just set permit_mx_backup in smtpd_recipient_restrictions.

that allows relaying for any domain which lists you as an MX. there is
some potential for unauthorised use of this feature, but it's basically
self-limiting and self-correcting as a mail admin can easily route such
mail to /dev/null.

IMO and IME, the amount of time spent maintaining a relay domains
list is far greater than the amount of time spent dealing with rare
unauthorised MX listings.

craig

--
craig sanders <cas@taz.net.au>

      GnuPG Key: 1024D/CD5626F0 
Key fingerprint: 9674 7EE2 4AC6 F5EF 3C57  52C3 EC32 6810 CD56 26F0

Reply to:

References:
- SMTP relays with Postfix and LDAP
  - From: Russell Coker <russell@coker.com.au>

Prev by Date: SMTP relays with Postfix and LDAP
Next by Date: inet address removed but still in use
Previous by thread: SMTP relays with Postfix and LDAP
Next by thread: inet address removed but still in use
Index(es):
- Date
- Thread