Passwords limited to 8 characters

Michael O'Rourke orourke.michael at gmail.com
Sun Mar 26 18:06:29 EST 2006 

Hello all,

I have a Sun Sparc system with Solaris 2.9 on it. I have compiled
Cyrus-SASL (I have tried both 2.1.21 released version and the CVS of
16 March 2006) with LDAP support (OpenLDAP 2.3.20).

For some odd (?) reason, when the machine acts as  a client, passwords
are limited to 8 characters. Using the sample server/client, whether I
use sasldb or ldapdb, if my password is longer than 8 characters, the
login will fail. With imtest and mupdatetest, the results are the
same.

Cyrus SASL was compiled like this (all of the export-ed variables are
each one long line):
export CC=/opt/sfw/gcc-3/bin/gcc
export CXX=/opt/sfw/gcc-3/bin/g++
export CFLAGS="-O3 -mcpu=v8 -Wa,-xarch=v8plusa
-I/opt/sfw/gcc-3/include -I/usr/sfw/include -I/opt/sfw/include
-I/usr/local/include -I/usr/local/ssl/include
-I/usr/local/BerkeleyDB.4.4/include"
export CPPFLAGS="-O3 -mcpu=v8 -Wa,-xarch=v8plusa
-I/opt/sfw/gcc-3/include -I/usr/sfw/include -I/opt/sfw/include
-I/usr/local/include -I/usr/local/ssl/include
-I/usr/local/BerkeleyDB.4.4/include"
export CXXFLAGS="-O3 -mcpu=v8 -Wa,-xarch=v8plusa -felide-constructors
-fno-exceptions -fno-rtti -I/opt/sfw/gcc-3/include -I/usr/sfw/include
-I/opt/sfw/include -I/usr/local/include -I/usr/local/ssl/include
-I/usr/local/BerkeleyDB.4.4/include"
export LDFLAGS="-L/opt/sfw/gcc-3/lib -L/usr/sfw/lib -L/opt/sfw/lib
-L/usr/local/lib -L/usr/local/BerkeleyDB.4.4/lib
-R/opt/sfw/gcc-3/lib:/usr/sfw/lib:/opt/sfw/lib:/usr/local/lib:/usr/local/ssl/lib:/usr/local/BerkeleyDB.4.4/lib
-lsocket -lnsl -lrt"
export LIBS="-R/opt/sfw/gcc-3/lib:/usr/sfw/lib:/opt/sfw/lib:/usr/local/lib:/usr/local/ssl/lib:/usr/local/BerkeleyDB.4.4/lib
-lsocket -lnsl -lrt"
export LD='/usr/ccs/bin/ld
-R/opt/sfw/gcc-3/lib:/usr/sfw/lib:/opt/sfw/lib:/usr/local/lib:/usr/local/ssl/lib:/usr/local/BerkeleyDB.4.4/lib'

./configure --with-bdb-libdir=/usr/local/BerkeleyDB.4.4/lib \
  --with-bdb-incdir=/usr/local/BerkeleyDB.4.4/include \
  --with-saslauthd \
  --enable-checkapop \
  --enable-cram \
  --enable-digest \
  --with-openssl=/usr/local/ssl \
  --enable-otp \
  --disable-krb4 \
  --disable-gssapi \
  --enable-plain \
  --enable-login \
  --enable-shared \
  --enable-static \
  --enable-ldapdb \
  --with-ldap=/usr/local


I have applied the latest Recommended patch cluster as well as the
libmd5 patches that are available.

Is this a limitation of the Solaris operating system, or have I done
something wrong in the compile?

Thanks, Mike.

More information about the Cyrus-sasl mailing list