[Date Prev][Date Next] [Chronological] [Thread] [Top]

SASL mechanisms

To: OpenLDAP software list <openldap-software@OpenLDAP.org>
Subject: SASL mechanisms
From: Francis Swasey <Frank.Swasey@uvm.edu>
Date: Mon, 20 Feb 2006 09:33:46 -0500
User-agent: Thunderbird 1.5 (Macintosh/20051201)

Folks, Having been bitten by someone installing a SASL mechanism on a server that also is one of my LDAP servers which was not configured (it happened to be Red Hat decided this mechanism is required to have sendmail on the system, but it could have been another sys admin).. I am wondering why we have to play with "sasl-secprops" to tell slapd what types of mechanisms are not wanted.

Is there a problem with providing a "sasl-mechanisms" config option that would list (GSSAPI, CRAM-MD5, etc) the specific mechanisms we wanted to support?

Would there be opposition to adding that? In the absence of opposition, would there be pointers on adding it (other than the obvious one of track sasl-secprops in the source and see how it is used)?

Frank

Follow-Ups:
- Re: SASL mechanisms
  - From: Andreas Hasenack <ahasenack@terra.com.br>

Prev by Date: can I change the uri of a chain at runtime ???
Next by Date: slackware + openldap: could not locate usable POSIX Threads
Index(es):
- Chronological
- Thread