ldapdb and crypt Userpassword

Tuan Van tvan at santafefixtures.com
Tue May 9 18:33:29 EDT 2006


Patrick Ben Koetter wrote:

>> I have not seen anything wrong with saslauthd+ldap, but with crypted
>> password in mysql one has to go the pam route right?
> 
> This route?
> 
> saslauthd -> pam -> pam_mysql -> mysql
> 
> Well it is at least very popular on the German Postfix mailing list. 
> 

Yes. I guess because there are so many guide/howto have written like
that. From http://www.postfix.org/docs.html, there are 8 howtos. One
with a broken link, one doesn't use sasl for smtpd, five are for
saslauthd and only one for auxprop. Beside, there are so many admins
out there forbid store cleartext password no matter what. So yeah,
above route is the only route for them to go unless they patch.
Don't you think it is complicated compare to
auxprop -> mysql ?
BTW, pam_mysql users should upgrade
http://pam-mysql.sourceforge.net/News/00005.php

Tuan


More information about the Cyrus-sasl mailing list