saslauthd, Realms, Cyrus-Imap and LDAP
Diego Rivera
lrivera at racsa.co.cr
Sun Sep 28 22:01:04 EDT 2003
Hello all
I'm attempting a setup which allows me to have multiple completely
separate mail domains in my server (separate IMAP boxes, separate
delivery via Postfix, etc...).
I've run into one snag though - probably because I don't understand SASL
as well as I'd like, but please gimme a hand here.
As it turns out, many different copies of imapd will be running - each
with their own little (and different configuration).
I had it all working "fine" with one exception: PLAIN authentication
doesn't support realms (this I found both in the docs and my testing).
SASLAUTHD DOES work with the LDAP tree I have, so I'm happy with that.
My issue becomes: How do I tell each Cyrus-IMAP (and its accompanying
Postfix) instance that ALL its users are in realm X, and that it should
always FORCE the use of that realm for authentication against saslauthd?
Since ALL the users that hit a particular IMAP instance will be in the
same realm (no cross-realm or anything like that), I don't see much of a
problem with this kind of approach.
Would a patch for this be too difficult to hack together? (for me to do
I mean).
What other advice can you offer me?
Best wishes.
Diego
--
===========================================================
* Diego Rivera *
* *
* "The Disease: Windows, the cure: Linux" *
* *
* E-mail: lrivera<AT>racsa<DOT>co<DOT>cr *
* Replace: <AT>='@', <DOT>='.' *
* *
* GPG: BE59 5469 C696 C80D FF5C 5926 0B36 F8FF DA98 62AD *
* GPG Public Key avaliable at: http://pgp.mit.edu *
===========================================================
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : https://lists.andrew.cmu.edu/mailman/private/info-cyrus/attachments/20030928/d1334e90/attachment.bin
More information about the Info-cyrus
mailing list