On Sat, 21 Apr 2007, Quanah Gibson-Mount wrote: ...
It seems to work ok, but I don't like the idea of having plain text password on the Host2's slapd.conf.
Is SASL the only sensible way to go here, security-wise?
You could use SASL/EXTERNAL (cert auth) certainly... I'll note that "interval" is not a valid parameter for "refreshAndPersist", I suggest looking at the "retry" parameter and going back over the documentation.
Philip Guenther Sendmail, Inc.