Please, what are the groups? Re: mech=login, auth=sasldb, groups=???
Mika Iisakkila
mika.iisakkila at pingrid.fi
Thu Nov 21 11:24:16 EST 2002
Ian McDonald wrote:
> Please, what are the groups, if not using Unix auth?
AFAIK you'd have to use Kerberos. If you have --with-auth=unix, the
group lookups go to the normal getpwnam()/getgrnam() functions, which
finally consult anything your name service switch is configured to do.
Theoretically this could use nss_ldap to get groups from LDAP,
but more probably you'll get the infamous death by signal 11
due to SASL library version clashes...
It wouldn't probably be very hard to write a patch to do
direct LDAP (or whatever) group queries regardless of auth_unix
and Kerberos, but I don't think anybody has done that.
--mika
More information about the Info-cyrus
mailing list