Wietse Venema wrote: > Lutz J?nicke: >> Hi! >> >> We have just been experiencing a power outage in the result of which our >> mail server with postfix did come back up fine but our LDAP server did >> not come back up. As a result emails to valid users (administrated via >> LDAP) was rejected with a permanent "User unknown" error. > > If the LDAP server came back from power failure in a broken state, > then it is very well possible that it returns "not found" replies. > Are you sure that LDAP lookups were timing out? > > For non-system user lookups, the Postfix LDAP client should distinguish > between "server down" and "not found". It is a very basic check that > must have been present from 1999 when the first Postfix LDAP client > was implemented.
Hmm, it would be nice if this health-check would be customizable. Example: When a fresh OpenLDAP replica during initialization is not fully functional yet the contextCSN attribute in the root entry of the database is not present. Would be nice to have LDAP map parameters to define a health-check for that. Ciao, Michael. -- Michael Ströder E-Mail: mich...@stroeder.com http://www.stroeder.com
smime.p7s
Description: S/MIME Cryptographic Signature
