[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Problem with Exim and OpenLDAP

To: Keith Matthews <keith_m@sweeney.demon.co.uk>
Subject: Re: Problem with Exim and OpenLDAP
From: Tony Earnshaw <tonni@billy.demon.nl>
Date: 19 Feb 2003 07:05:27 +0100
Cc: openldap-software@OpenLDAP.org
In-reply-to: <20030218203333.1f38da98.keith_m@sweeney.demon.co.uk>
Organization:
References: <20030218203333.1f38da98.keith_m@sweeney.demon.co.uk>

tir, 2003-02-18 kl. 21:33 skrev Keith Matthews:

> I'm having an interesting time getting exim to verify it's accounts
> through Openldap.

> I've got it to talk to ldap OK, but some accounts are getting error
> responses which are causing exim to defer mail delivery. I suspect a
> data problem but have little idea where. Someone else set up the
> directory and loaded the data.

> OpenLDAP 2.0.27 on RH 8.0. exim 4.12 compiled on the same box.

> 14 accounts present, 6 behave OK the rest get failure messages (if it
> matters exim uses the URL format interface). I'm asking for one
> attribute which all entries have. The data is being used for PAM login
> control without problem.

It's difficult to give other than general observations, since my basic
ldap setup is so different from yours.

I run Exim 4.12 on RH 7.2, gcc 3.0.4, Openldap 2.1.12 / BDB 4.1.25. Exim
is compiled against BDB 4.1.25. It's only a test M/C in principle,
though used seriously in production. Almost all mail accounts are ldap
based. I also use ldap for Exim AUTH PLAIN and CRAM-MD5, aliases,
forwarding etc. Exim uses ldaps:/// binds, no problems. 

> Feb 18 16:45:38 offley slapd[447]: send_ldap_search_result 4::
> Feb 18 16:45:38 offley slapd[447]: send_ldap_response: msgid=2 tag=101
> err=4
> Feb 18 16:45:38 offley slapd[447]: conn=0 op=1 SEARCH RESULT tag=101
> err=4 text=

> Some digging in the code suggests that the error code is
> LDAP_SIZELIMIT_EXCEEDED being reported from send_search_result,

Indeed. I have no idea why.

> Can anyone suggest a plan of attack to narrow this down further.

1: A number of Exim mailing list people are using ldap successfully for
the same reasons you and I are.

2: Don't know whether you have access to a test box on which you could
set up a newer Openldap config. I've never used 2.0.x, always 2.1.x,
starting at 2.1.4. I noticed an enormous difference in Exim's stability
under stress with the upgrade from 2.1.8 to 2.1.10. That's all I can
offer, unfortunately.

Best,

Tony

-- 

Tony Earnshaw

When you rob a person of his illusions,
you are robbing him of his happiness


e-post:		tonni@billy.demon.nl
www:		http://www.billy.demon.nl

Follow-Ups:
- Re: Problem with Exim and OpenLDAP
  - From: Keith Matthews <keith_m@sweeney.demon.co.uk>

References:
- Problem with Exim and OpenLDAP
  - From: Keith Matthews <keith_m@sweeney.demon.co.uk>

Prev by Date: Re: OpenLDAP + RedHat 8.0 problem
Next by Date: Re: authPassword schema
Index(es):
- Chronological
- Thread