Cyrus SASL is a method for adding authentication mechanisms for connection based protocols. It is most commonly used for providing SMTP Authentication in MTAs (Postfix, Sendmail etc) and also used as the authentication subsystem by the Cyrus mail suite.
[godzilla] ~> uname -a FreeBSD godzilla.domain.com 5.1-CURRENT FreeBSD 5.1-CURRENT #0: Mon Aug 25 13:13:16 IST 2003 root@godzilla.domain.com:/usr/obj/usr/src/sys/MYKERNEL i386 cyrus-sasl-2.1.15 cyrus-sasl-saslauthd-2.1.15_1
[godzilla] ~# portinstall security/cyrus-sasl2 [godzilla] ~# portinstall security/cyrus-sasl2-saslauthd
MAKE_ARGS = {
'security/cyrus-sasl2' => 'WITH_BDB_VER=41 WITH_MYSQL=yes WITH_DEV_URANDOM=yes MAKE_KERBEROS5=yes',
}
sasl_saslauthd_enable="YES" sasl_saslauthd_flags="-a sasldb"
[godzilla] ~# /usr/local/etc/rc.d/saslauthd.sh start saslauthd [godzilla] ~# ps ax|grep saslauthd 5835 ?? Ss 0:00.00 /usr/local/sbin/saslauthd -a sasldb 5836 ?? S 0:00.00 /usr/local/sbin/saslauthd -a sasldb 5837 ?? S 0:00.00 /usr/local/sbin/saslauthd -a sasldb 5838 ?? S 0:00.00 /usr/local/sbin/saslauthd -a sasldb 5839 ?? S 0:00.00 /usr/local/sbin/saslauthd -a sasldb
Contents |
[godzilla] ~# saslpasswd2 -c cyrus Password: ****** Again (for verification): ****** [godzilla] ~# sasldblistusers2 cyrus@godzilla.domain.com: userPassword
### ### /usr/local/etc/saslauthd.conf ### ldap_servers: ldap://ldap.domain.com/ ldap_version: 3 ldap_search_base: ou=people,dc=domain,dc=com ldap_auth_method: bind
## ## rc.conf ## sasl_saslauthd_enable="YES" sasl_saslauthd_flags="-a ldap"
Hmm.. where did the sample "client" and "server" go??? I think its not installed by default.