ansible-role-dovecot

infra/ansible-role-dovecot

Fork 0

Commit graph

Author	SHA1	Message	Date
Julian Rother	5267a3d716	Use DN lookup instead of DN template for LDAP auth In our setup users require a specific LDAP group to login. We enforce this with an LDAP filter (user_filter). With DN template, authentication always succeeds for these users, as Dovecot only performs an LDAP BIND request. Successful auth followed by failed userdb lookup seems to trigger a bug in Dovecot that causes the handler processes to stay around indefinitely and fill up the process_limit. Using DN lookup with the LDAP filter set for both user_filter and pass_filter should cause the authentication to fail for these users and work around the bug.	2022-07-18 00:36:18 +02:00
Christian Carstensen	14cdc0d6f6	removed pass_filter, added auth_bind_userdn	2020-07-28 15:31:08 +02:00
Morre	a38390c678	Enable LDAP	2020-07-12 17:13:36 +02:00

Author

SHA1

Message

Date

Julian Rother

5267a3d716

Use DN lookup instead of DN template for LDAP auth

In our setup users require a specific LDAP group to login. We enforce this
with an LDAP filter (user_filter). With DN template, authentication always
succeeds for these users, as Dovecot only performs an LDAP BIND request.
Successful auth followed by failed userdb lookup seems to trigger a bug in
Dovecot that causes the handler processes to stay around indefinitely and fill
up the process_limit. Using DN lookup with the LDAP filter set for both
user_filter and pass_filter should cause the authentication to fail for these
users and work around the bug.

2022-07-18 00:36:18 +02:00

Christian Carstensen

14cdc0d6f6

removed pass_filter, added auth_bind_userdn

2020-07-28 15:31:08 +02:00

Morre

a38390c678

Enable LDAP

2020-07-12 17:13:36 +02:00

3 commits