SASL2, sendmail, pam, auth failed

Alex dermannda at web.de
Fri Jul 14 12:04:03 EDT 2006


Am 2006-07-14 15:25, Eric Ewanco schrieb:
> Alexander Dalloz wrote:
> > Eric Ewanco schrieb:
> >
> >> Try a lowercase a.
> >>
> > If I may ask: why (how should that help out)?
> >
> Because I had a similar problem to yours and it worked for me. 

hi,
Please do not confuse us. Thats MY problem :)


> I found 
> a page instructing me on how to configure SASL and Sendmail and it 
> showed using options a, y, and p, instead of the A, y, and p I had.  So 
> I switched it, and it worked.
> 
> Here are the two documented settings:
> 
> A
>     Use the AUTH= parameter for the MAIL FROM command only when
>     authentication succeeded. 
> a
>     protection from active (non-dictionary) attacks during
>     authentication exchange. 
> 
> Frankly I don't understand how either of this affect the success or 
> failure of authentication.  A looks like it is only applicable for 
> outgoing mail, whereas we're concerned about incoming mail.  The 
> definition of 'a' seems a bit vague; what does this protection involve?  
> But this does pertain to the authentication exchange, so theoretically 
> it could affect its success or failure.
> 
> Eric
> 
> 
> 
> 

i've tried it, i didn't have anyway anything to loose :)
as a result, i don't even get the
250-AUTH PLAIN LOGIN
when i telnet to it (or secured via tls in evolution)

so, back to define(`confAUTH_OPTIONS', `A y')

Alex




More information about the Cyrus-sasl mailing list