[Date Prev][Date Next] [Chronological] [Thread] [Top]

SASL mechanisms

Having been bitten by someone installing a SASL mechanism on a server that also is one of my LDAP servers which was not configured (it happened to be Red Hat decided this mechanism is required to have sendmail on the system, but it could have been another sys admin).. I am wondering why we have to play with "sasl-secprops" to tell slapd what types of mechanisms are not wanted.

Is there a problem with providing a "sasl-mechanisms" config option that would list (GSSAPI, CRAM-MD5, etc) the specific mechanisms we wanted to support?

Would there be opposition to adding that? In the absence of opposition, would there be pointers on adding it (other than the obvious one of track sasl-secprops in the source and see how it is used)?