-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1

On Thu, 26 Nov 2009, Edgar Fuß wrote:

We have users existing in LDAP but not supposed to receive mail. We used to handle that (somewhat ungracefully) by simply not creating the top mail directory for those accounts. Since switching to Dovecots LDA, these non-existing dirs are considered temporary failures and so the junk mails pile up in postfix' queue

Well, you can check the source, IMHO a non-existant directory is a local configuration error, hence, I would not like it.

I know the clean solution woud be checking for an LDAP attribute in postfix before even accepting the mail.

If your postfix accepts the mail for an existant user, who cannot permanently receive messages, it will generate a DSN, I guess, too. If so, your server will get problems (get banned) because of backscatter by some restricted sites.

Do you have such a complicated LDAP setup, that you do not find a simple filter for postfix to "not find" those accounts without mailbox? E.g. an attribute that only does with or without mailbox include?

Regards,

Steffen Kaiser -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux)

iQEVAwUBSw+Qh3WSIuGy1ktrAQIOYAf/VSx9UOkDIS5Y5ioOtFNJrJ/eZR54sja5 0+iptq0Tv2nji0FX1a8x4dtx7HUlPn7/AuuTSuzIc3gyjC1JhRKjEGre5WjWUbNR 9mjxyIf0gzXBZUucs5gbdWpfeu0O2PQs9qg7wziH9gJv1KZnc5rxfcrUsXbFAnPw kt0OESunS3UiJ42fgUDahQJCzZU+ofT6PGDsBappnH7iCLAbSyjcN9IJtA4n61hV +cVzwj3UwKO0JWIQ0T/4aiMKlxhV1uHVOT44L/blMKseTqlVBUN+FXPOUK2GMe18 19LfJxw8zpFDVNjhCaw6ZniqJ+OzfkO9D0qgS8pzAwouSAPzjsboCA== =GOqH -----END PGP SIGNATURE-----