RE: Broken opendkim caching of LDAP result

From: Murray S. Kucherawy <>
Date: Mon, 7 May 2012 22:05:51 +0000

> -----Original Message-----
> From: Quanah Gibson-Mount []
> Sent: Monday, May 07, 2012 2:45 PM
> To: Rolf E. Sonneveld; Murray S. Kucherawy
> Cc:
> Subject: Re: Broken opendkim caching of LDAP result
> AD's inability to be a real LDAP server doesn't make my point any less
> valid. LDAP is designed for fast, scalable reads.

AD might be why that optional caching layer was added, actually. (I can't remember exactly, and this head cold isn't helping!)

Via a separate compile time option, OpenDKIM can also cache retrieved keys to keep the load on DNS down, rather than going to the resolver each time something signed is presented for verification.

Received on Mon May 07 2012 - 22:06:26 PST

This archive was generated by hypermail 2.3.0 : Mon Oct 29 2012 - 23:20:40 PST