I've just finished the first implementation to use LDAP instead of a berkely DB as a storage for user secrets. This should make it easier to let sendmail and cyrus share the same user database, if the MTA is running on another machine then the IMAP server. Also clusters should benefit. There are still some remaining issues, like how to make the used LDAP schema configurable. Currentlu most of this stuff is hardcoded. Therefore the patch is not for production use. The problem is also that if LDAP is using SASL for authenticated binds, this may result in endless loops. I'm currently using rootdn/rootpwd based simple binds to connect the the LDAP server to retrieve the secrets. sample-client and sample-server are working correctly with this patch. i don't have access to an FTP server this week, but i can distribute the patch per email if somebody wants to take a look. the patch is about 14k gziped.
