Re: mail.local NSS awareness

To: Emmanuel Dreyfus <manu%netbsd.org@localhost>
Subject: Re: mail.local NSS awareness
From: Manuel Bouyer <bouyer%antioche.eu.org@localhost>
Date: Wed, 30 Apr 2008 11:27:30 +0200

On Wed, Apr 30, 2008 at 09:16:52AM +0000, Emmanuel Dreyfus wrote:
> > Hum, in light of this I don't understand your problem any more
> > (I mean, I see the benefit of having mail.local handle nss failures
> > gracefully, but I don't understand how you did run into it).
> > If the MTA checks that the user exists, if there's a LDAP failure
> > it should fail the message before calling mail.local, isn't it ?
> 
> Chaos starts if you have network outage or overloaded LDAP server: 
> you can easily reach the situation where MTA can look up the user
> successfully, and mail.local gets a failure. The situation is rare,
> but it can happen. With current mail.local behavior, the mail is 
> silently discarded, which is extremely bad.

Sure; I though you were talking about a more common problem, which is
that the ldap server is completely unreachable. Does the MTAs handle
this case properly ?

-- 
Manuel Bouyer <bouyer%antioche.eu.org@localhost>
     NetBSD: 26 ans d'experience feront toujours la difference
--

Follow-Ups:
- Re: mail.local NSS awareness
  - From: Emmanuel Dreyfus

References:
- Re: mail.local NSS awareness
  - From: Manuel Bouyer
- Re: mail.local NSS awareness
  - From: Emmanuel Dreyfus
- Re: mail.local NSS awareness
  - From: Manuel Bouyer
- Re: mail.local NSS awareness
  - From: Emmanuel Dreyfus
- Re: mail.local NSS awareness
  - From: Manuel Bouyer
- Re: mail.local NSS awareness
  - From: Emmanuel Dreyfus

Prev by Date: Re: mail.local NSS awareness (third patch)
Next by Date: Re: mail.local NSS awareness
Previous by Thread: Re: mail.local NSS awareness
Next by Thread: Re: mail.local NSS awareness
Indexes:

Home | Main Index | Thread Index | Old Index