[Date Prev][Date Next]
Having been bitten by someone installing a SASL mechanism on a server
that also is one of my LDAP servers which was not configured (it
happened to be Red Hat decided this mechanism is required to have
sendmail on the system, but it could have been another sys admin).. I
am wondering why we have to play with "sasl-secprops" to tell slapd what
types of mechanisms are not wanted.
Is there a problem with providing a "sasl-mechanisms" config option
that would list (GSSAPI, CRAM-MD5, etc) the specific mechanisms we
wanted to support?
Would there be opposition to adding that? In the absence of
opposition, would there be pointers on adding it (other than the obvious
one of track sasl-secprops in the source and see how it is used)?