cyrus imap without sasl
GOMBAS Gabor
gombasg at inf.elte.hu
Thu Sep 19 07:07:30 EDT 2002
On Thu, Sep 19, 2002 at 02:29:24AM -0700, David Wright wrote:
> It's true, there isn't a need, meaning Cyrus could have been designed to
> use PAM directly as a security layer and not used SASL.
Huh? PAM is not a security layer. It is an API designed for local
authentication only. On the other hand, SASL is a _protocol_ designed
for remote client-server authentication, encryption and integrity
protection. There is _no_ relation between SASL and PAM. Of course you
can use PAM to implement the PLAIN SASL authentication method, and it is
also possible that some PAM module might use SASL to talk to a remote
authentication service, but these are implementation details.
Gabor
--
Gabor Gombas Eotvos Lorand University
E-mail: gombasg at inf.elte.hu Hungary
More information about the Info-cyrus
mailing list