saslauthd SASL_IPREMOTEPORT -> PAM_RHOST

Amir 'CG' Caspi cepheid at 3phase.com
Thu Dec 29 19:51:46 EST 2011


Hi Sean,

	I'm digging through some old emails since I'm trying to 
finally get this stuff to work.  RH seems to be making a little 
progress in implementing Lorenzo's patch to get saslauthd to log 
rhost via PAM, but I'm curious about your suggestion here... what did 
you mean by changing the syslog to a different device, and getting 
sasl to log the info?  Would this require not using pam anymore?  I'm 
not all that familiar with the guts of sasl, pam, etc. so additional 
details would be helpful.

Thanks.
						--- Amir

At 3:18 PM -0400 05/23/2011, omalleys at msu.edu wrote:
>Quoting Amir 'CG' Caspi <cepheid at 3phase.com>:
>
>>	Of course, the rhost really is the most important piece 
>>anyway, since that's what I need for firewalling.  I can live 
>>without the bad username, since apparently it's not logged anyway 
>>even with other services.
>
>
>in the saslauthd code, I think there is a section that allows -sasl- 
>to log the information you want. It would probably be easier to 
>modify it there.
>
>IE remove the debug flag requirement and change the syslog to the 
>device you want.


More information about the Cyrus-sasl mailing list