[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Postfix 2.0.16 CRAM/DIGEST-MD5 SMTP AUTH

Howard Chu wrote:

Also in this otherwise excellent summary:


The sasl-regexp statements are in the wrong order. The statements are matched
in the order that they're listed in slapd.conf. You must put the most
specific statement first, otherwise it will never be used. This is already
stated in the documentation, yet it seems that everyone overlooks it.

Should've mentioned that. I've gone back to specifying them explicitly:

sasl-authz-policy to
sasl-host billy.demon.nl

sasl-regexp uid=(.*),cn=plain,cn=auth "ldap:///dc=billy,dc=demon,dc=nl??sub?uid=$1";
sasl-regexp uid=(.*),cn=cram-md5,cn=auth "ldap:///dc=billy,dc=demon,dc=nl??sub?uid=$1";
sasl-regexp uid=(.*),cn=digest-md5,cn=auth "ldap:///dc=billy,dc=demon,dc=nl??sub?uid=$1";


Tony Earnshaw

Once the camel's head has entered your tent,
it's very difficult to stop the rest of the
animal from following it

Mail: billy-at-billy.demon.nl