On 10/27/2011 08:25 AM, Nikolaos Milas wrote: > Now come on, Nerijus, there is no associated security risk with that. If > you feel uneasy, create a separate LDAP user with proper access rights > just for postfix use. Providing postfix user with read access to lookup > tables won't cause any harm to LDAP security.
Security is one side of the coin. The other is performance. Lookups would be faster. Small ldap reply, less packets over the wire, no need to search for attribute, less code execution, less access rights. Simplier config using subtrees, where entries have completely different set of attributes. Useful for Mail Gateways, where tons of mails arrive each second. > Have you perfected all > your other coding and/or administrative tasks? I guess I'm not. But I keep trying... > We are all striving for perfection, but some things might not or should > not need to be stretched more than they are because we live in a world > of priorities and time/effort is a scarce resource. And Postfix is close > to perfection anyway (at least for most of people). :-) "TRON: Legacy" quote: Kevin Flynn: The thing about perfection is that it's unknowable. It's impossible, but it's also right in front of us all the time. -- Pagarbiai, Nerijus Kislauskas KTU ITPI, Litnet valdymo centras Studentu g. 48a - 101, Kaunas tel.: (8~37) 30 06 45 mob. tel.: 8-614-93889 e-mail.: nerijus.kislaus...@ktu.lt
