[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: gss_wrap/gss_unwrap sasl buffers?

On Sun, 28 Jan 2007 15:38:54 -0800
Howard Chu <hyc@symas.com> wrote:

> However, the only standards-compliant way to enable this functionality is 
> through a SASL Bind. Are you actually reimplementing that as well? We've 

I'm not reimplementing all SASL mechs. I'm just doing GSSAPI and
GSS-SPNEGO. Doing ldap_sasl_bind_s + gss_init_sec_context et al is
relatively simple.

> talked about jettisoning Cyrus SASL in favor of "something else" but there 
> haven't been any other implementations worth considering. Feel free to 
> continue this conversation on the openldap-devel mailing list if you want to 
> pursue it further.

When I get everyting dialed in maybe I'll post it. Then we can speculate