ldapd not advertising AUTH=LOGIN

Ken Murchison ken at oceana.com
Sat Apr 12 11:43:16 EDT 2003

Jeff Warnica wrote:
> OK.. But wouldnt that mean that SASL is just another PAM?

No.  PAM has nothing to do with the protocol.  PAM also only works for
plaintext authentication.  PAM can, and is, used as a way of verifying
plaintext passwords within some SASL implementations.  Read RFC 2222 if
you're really interested.

> On Fri, 2003-04-11 at 16:59, Ken Murchison wrote:
> > >
> > > - with SASL a client is not so much as verifing identity with the IMAP
> > > server as it is with SASL which used common grammer among all protocols
> > > that use it
> >
> > No.  SASL does not provide a common grammar among protocols.  Each
> > protocol has its own SASL profile which specifies the grammar.  The
> > server verifys/authenticates the user via SASL just like it does with
> > the IMAP LOGIN command.
> >

Kenneth Murchison     Oceana Matrix Ltd.
Software Engineer     21 Princeton Place
716-662-8973 x26      Orchard Park, NY 14127
--PGP Public Key--    http://www.oceana.com/~ken/ksm.pgp

More information about the Info-cyrus mailing list