[KLUG Members] Cyrus IMAP and SASL hell
Adam Williams
members@kalamazoolinux.org
08 Oct 2002 15:38:02 -0400
>>>Okay, so exactly HOW does SASL work?
>>Thats complicated.
>>>Or not, as the case may be?
>>That may even be more complicated.
>See, I figured that out myself.
Congratulations!
>>SASL is an API and model for network authentication. SASL itself is
>>nothing more. There are various modules (similair but not equivalent to
>>PAM modules) for various types of authentication (Kerberos, CRAM,
>>AUXPROP, etc...).
>>What module are you trying to use? What do you want to authenticate
>>against?
>>Remember that SASL (unlike PAM/NSS) has no inherent relationship with
>>the OS. i.e. a SASL user george has no relationship to PAM/NSS user
>>george unless one is explicitly established.
>That's fine by me, I just want to enter my name and my saslpasswd2
>password in imtest and not have it gag a maggot:
>AAAAAAAAAAAAGH! I did `saslpasswd2 -c peter@localhost ` and it WORKED!
>Those BASTARDS! ARGH! I specifically noted my realm as `-r
>killdevil.org` for imtest! ARGH!
You can use {-u DOM} with saslpasswd2 if domains/realms are important to
your. Huh, I've never seen syntax like peter@localhost before.
Live and learn. I wonder if it really means the same thing as
"saslpasswd2 -c peter -u localhost". Scratch head.... documentation on
this sucks.