Hej Tarjei Huse wrote:
> So, basicly there are two ways of doing this: > a) LDAP -> needs changing some mgd_functions. Also doesn't support > strong passwords today (long story take a look at marc and the > cyrus-sasl maillinglist). > b) Make a patch for the mysql-auxprop module (and try to get it > accepted) The openldap administratorsguide chapter 10 talks about openldap using sasl for strong authentication. 1)The midgard-LDAP patch will store passwords in LDAP and 2) SASL can use them for strong authentication Is there something I got wrong here? --- 10.2.3. DIGEST-MD5 This section describes the use of the SASL DIGEST-MD5 mechanism using secrets stored either in the directory itself or in Cyrus SASL's own database. DIGEST-MD5 relies on the client and the server sharing a "secret", usually a password. The server generates a challenge and the client a response proving that it knows the shared secret. This is much more secure than simply sending the secret over the wire. --- /Peter --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
