[Dovecot] Dovecot Ldap Problem
Hi All,
My server is running with Dovecot 1.2.11 and openldap 2.4.17 it was working fine but suddenly my dovecot auth started to failing sometimes. After restarting dovecot everything will work fine. The slapd log file is showing "deffering operation: too many executing". When i googled i have seen that if the client is not properly disconnecting the connection slapd will give this error. Can you please let me know whether it is a dovecot problem and if so why it is occuring.
-- Rgds,
Aravind M D aravind.divakaran@yukthi.com Helpdesk Team Yukthi Systems Pvt Ltd Ph:- 08042351119 08042351120
On 10.8.2010, at 7.16, Aravind Divakaran wrote:
My server is running with Dovecot 1.2.11 and openldap 2.4.17 it was working fine but suddenly my dovecot auth started to failing sometimes. After restarting dovecot everything will work fine. The slapd log file is showing "deffering operation: too many executing". When i googled i have seen that if the client is not properly disconnecting the connection slapd will give this error. Can you please let me know whether it is a dovecot problem and if so why it is occuring.
Dovecot never disconnects from LDAP server. You're using passdb/userdb ldap and not pam_ldap, right?
On Tue, 2010-08-10 at 18:13 +0550, Aravind Divakaran wrote:
Dovecot never disconnects from LDAP server. You're using passdb/userdb ldap and not pam_ldap, right?
I am using passdb/userdb ldap not pam_ldap.
My googling shows:
"It means there are too many operations active on the given connection, so further operations on that connection will be queued until some of the active operations complete."
Maybe you need to reduce this:
/* Maximum number of pending requests before delaying new requests. */ #define DB_LDAP_MAX_PENDING_REQUESTS 128
I don't actually know what OpenLDAP's limit is.. Anyway, if so many requests are being queued, it sounds like you're getting more authentication attempts than your server(s) can handle in time. Try enabling Dovecot's auth cache? http://wiki.dovecot.org/Authentication/Caching
On Tue, 2010-08-10 at 14:01 +0100, Timo Sirainen wrote:
/* Maximum number of pending requests before delaying new requests. */ #define DB_LDAP_MAX_PENDING_REQUESTS 128
A quick look at OpenLDAP code shows that it defaults to 16 worker threads. I guess I should reduce this to 8 or something. :)
participants (2)
-
Aravind Divakaran
-
Timo Sirainen