[prev in list] [next in list] [prev in thread] [next in thread] 

List:       info-cyrus
Subject:    Re: Cyrus IMAP Presentation
From:       Tarjei Huse <tarjei () nu ! no>
Date:       2002-09-22 16:45:38
[Download RAW message or body]

Hi,

>> If you do not use saslpasswd2, then Cyrus only uses plaintext methods for
> > authentication, right?
> No.  You can use a MySQL backend as well to supply the secrets for
> non-plaintext methods.  The OpenLDAP people also have an auxprop
> plugin that will get the secerts directly from their datastore, but it
> only works internal to OpenLDAP.

Hmm. If I can generalize here: 
-> If you use an auxprop module, then you may use non-plaintxt mechs. Currently
only the MySQL one supports this and thus stores the same secrets as the
saslpasswd 2 file but in a db.

-> There is an auxprop pluggin for OpenLDAP that makes it possible to use
non-plain mechs directly between a LDAPv3 client and OpenLDAP but not via SASL. 

Ok, if this is correct, is there any chance that the OpenLDAP Auxprop could be
modified to be used for for all applications using sasl?
Tarjei

-------------------------------------------------
This mail sent through IMP: http://horde.org/imp/

[prev in list] [next in list] [prev in thread] [next in thread]