How do I combine the use of sasldb and pam?
Jim Bacon
jim at nortx.com
Sat Dec 30 06:38:47 EST 2006
Thank you!
This worked. I took a look at the actual command line saslauthd was being
started with (ps -elf is your friend). I adjusted /etc/sysconfig/saslauthd
to only have pam in the mech list as well (it turned out that this file
over-rode the command line settings). Once I had done that the changes you
suggested to /etc/imapd.conf worked just fine. I can even go back to the
stock distro for Fedora 6 which does not have sasldb enabled in saslauthd
since it is now cyrus-imapd that now uses sasldb.
Thanks again!
Jim
> -----Original Message-----
> From: Andreas Winkelmann [mailto:ml at awinkelmann.de]
> Sent: Saturday, December 30, 2006 2:00 AM
> To: Jim Bacon
> Subject: Re: How do I combine the use of sasldb and pam?
>
>
> On Saturday 30 December 2006 05:44, you wrote:
>
> > I tried some of that already, even had to get the source for
> saslauthd and
> > recompile with sasldb enabled. No luck. Only the first MECH listed is
> > used.
>
> In saslauthd, yes. But you can use auxprop (sasldb) together with
> saslauthd.
>
> > > (sasl_)pwcheck_method: auxprop saslauthd
> > > (sasl_)auxprop_plugin: sasldb
> > > (sasl_)mech_list: plain login
>
> If you start saslauthd with "-a pam" for example. This will first
> check in
> sasldb if the User exisists, then with saslauthd in pam.
>
> --
> Andreas
>
More information about the Cyrus-sasl
mailing list