Re: [exim] Exim hangs on ldap search

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
MAlain Williams at <-
MAlain Williams at ->
Delete this message
Reply to this message
Author: Lou Vasquez
Date:  
To: Alain Williams
CC: exim-users
Subject: Re: [exim] Exim hangs on ldap search
Oddly enough that worked. I'd rather not leave ldap(-s) open but that
at least points to the problem. I remove the s and it comes back, I put
the s in and it hangs after getting the cn. Whats really strange is
that ldapauth works fine with ldaps (but I have to use cn, not username
for the bind) but not with ldap lookup.

Until I have time to download code and try patches and look into the
code I'll probably go with my perl hack, but I'm still happy to try
things with it.

Lou

-----Original Message-----
From: Alain Williams [mailto:addw@phcomp.co.uk]
Sent: Sunday, July 23, 2006 5:00 PM
To: Lou Vasquez
Cc: exim-users@???
Subject: Re: [exim] Exim hangs on ldap search

On Sun, Jul 23, 2006 at 02:52:26PM -0400, Lou Vasquez wrote:
> I don't know why I didn't think to try that. Must be the years of
> having to compile debug into code and run in a debugger.
>
> I tried it just now but it doesn't look like its in a loop. It just
> hangs. See below. It's clearly getting the right answer (the cn),
but
> it's almost like it's expecting more but never gets it. Like I said
> though the same search with ldapsearch from the cmd line works great.
>
> Just in case in all my other changes something in the config has
changed
> I'm attaching that too.
>
> Thanks,
> Lou
> 
> ***config
>    server_condition = \
>                ${lookup ldap\

> 
> {user="cn=<snip>,cn=Users,dc=ercbroadband,dc=local" \
>                        pass=<snip> \

>
>
ldaps://chapman.ercbroadband.org/cn=Users,dc=ercbroadband,dc=local?cn?su
b?(sAMAccountName=$1)}\
>                {works}fail}}

Can you go 'ldap' rather than 'ldaps', you might get a better idea of
what is happening.
Have you tried 'ltrace' -- strace's 1st cousin, can sometimes give a
different perspective
on what is happening.

I assume that file descriptor 10 is the socket to the ldap server.
I also assume that the same query works when you use 'ldapsearch'.
Can you look at the ldap server logs ... does it tell you what
queries/answers it is getting ?

--
Alain Williams
Parliament Hill Computers Ltd.
Linux Consultant - Mail systems, Web sites, Networking, Programmer, IT
Lecturer.
+44 (0) 787 668 0256 http://www.phcomp.co.uk/

#include <std_disclaimer.h>


This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-[exim] Exim out front, exim and exchange internalRe: [exim] understanding submission mode / sender:-header not added->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)