#3793: sasl is deprecated on OS X 10.11 with Xcode 7.1.1
---------------------+----------------------
Reporter: chdiza | Owner: mutt-dev
Type: defect | Status: new
Priority: major | Milestone:
Component: crypto | Version:
Resolution: | Keywords:
---------------------+----------------------
Comment (by chdiza):
I don't see a license, so I don't know whether it's permitted. I looked
for hints about why it was deprecated before I reported here, but alas,
there were none. No version number is in that file either; however, some
comments in the related file `saslplug.h` indicate that it's 2.1.26, the
latest existing cyrus-sasl version. Of course, this is an Apple-modified
version of it.
I'm not sure how serious this issue is. I'm inclined to say it's serious,
but I'm not an expert.
Note that GNU-sasl has gone even *longer* without an update (2010) than
cyrus-sasl has, so even if mutt could use GNU-sasl it doesn't seem worth
it. Note also that I built the latest cyrus-sasl from source and got mutt
to link against it but this sasl is broken on OS X. No matter what I do,
when sending mail, mutt complains "No authenticators available", and the
.muttdebug logs say "No worthy mechs found". (I note that IMAP logins
seem to work fine with this custom sasl.)
All of that is to say that there appear to be no replacements for the
current sasl situation.
However, is this really a huge deal? Here's where my ignorance likely
comes into play. I built mutt without sasl to see what would happen. I
can still do IMAP logins just fine, which I assume is because I only use
TLS connections to the IMAP servers. Is it the case that if TLS is
already being used, then there's nothing to be gained by using sasl on top
of that?
Regarding SMTP, I am able to use `msmtp` just fine, and without building
msmtp against sasl.
(By the way, this latter fact points to an unclarity in one of the mutt
error messages. When mutt was built without sasl and I tried to use
mutt's built-in SMTP facilities, an error message said something to the
effect of "smtp authentication without sasl is impossible". That seems to
be false, since `msmtp` without sasl can work just fine. What that
message really means, it seems, is "mutt's *own* SMTP implementation can't
do smtp authentication without sasl".)
--
Ticket URL: <http://dev.mutt.org/trac/ticket/3793#comment:2>
Mutt <http://www.mutt.org/>
The Mutt mail user agent
