Suomi, Thanks for your mail. I do not use LDAP, instead I use PAM and I want to have the following authentication mechanisms together:
PLAIN (over PAM, pam_krb5.so and saslauthd) GSSAPI CRAM-MD5 Currently, two of these work fine together; plain and gssapi, but I am not able to get cram-md5 working. Kind Regards Ali Majdzadeh Kohbanani 2009/11/11 Ali Majdzadeh <ali.majdza...@gmail.com> > Suomi, > Thanks for your mail. I do not use LDAP, instead I use PAM and I want to > have the following authentication mechanisms together: > > PLAIN (over PAM, pam_krb5.so and saslauthd) > GSSAPI > CRAM-MD5 > > Currently, two of these work fine together; plain and gssapi, but I am not > able to get cram-md5 working. > > > Kind Regards > Ali Majdzadeh Kohbanani > > 2009/11/11 suomi <post...@ayni.com> > > Hi Ali >> i had problems using login, plain, cram-md5 and digest-md5 (all toghether) >> through saslauthd. At this site, all mail parameters are in LDAP, so i had >> to tell saslauthd to get the authentication parameters from LDAP. For the >> tests, i had inserted the passwords in plaintext into LDAP. But as soon as >> saslauthd "saw", that it had to go via LDAP, it asked for /etc/sasldb2 and >> wanted to go via auxprop. >> i did not test eny further then and went back to using auxprop with >> /etc/sasldb2. >> See also my submission dated 9/24/2009 >> >> suomi >> >> >> On 2009-11-11 08:51, Ali Majdzadeh wrote: >> >>> Patrick, >>> Hi >>> Thanks for your mail. I use the following options in smtpd.conf: >>> >>> mech_list: gssapi plain >>> pwcheck_method: saslauthd >>> saslauthd_path: /var/run/saslauthd/mux >>> keytab: /etc/krb5.keytab >>> >>> and I am able to use GSSAPI and PLAIN (Over PAM using pam_krb5.so) >>> mechanisms. How is it possible to add cram-md5 mechanism? >>> By the way, I do know about sasldb and auxprop, but what I plan to >>> achieve is to have cram-md5 mechanism while supporting plain mechanism >>> using saslauthd, PAM and pam_krb5.so. I have got no problems using >>> native GSSAPI support. >>> >>> Kind Regards >>> Ali Majdzadeh Kohbanani >>> >>> 2009/11/11 Patrick Ben Koetter <p...@state-of-mind.de >>> <mailto:p...@state-of-mind.de>> >>> >>> >>> * Ali Majdzadeh <ali.majdza...@gmail.com >>> <mailto:ali.majdza...@gmail.com>>: >>> >>> > Hello All >>> > Is it possible to have both PLAIN and CRAM-MD5 authentication >>> > mechanisms using SASL? >>> >>> Yes. The password must be stored as plaintext. Then plaintext and >>> shared-secret mechanisms will work. >>> >>> p...@rick >>> >>> -- >>> All technical questions asked privately will be automatically >>> answered on the >>> list and archived for public access unless privacy is explicitely >>> required and >>> justified. >>> >>> saslfinger (debugging SMTP AUTH): >>> <http://postfix.state-of-mind.de/patrick.koetter/saslfinger/> >>> >>> >>> >
