Re: cyrus imap without sasl

From: GOMBAS Gabor (no email)
Date: Thu Sep 19 2002 - 07:07:30 EDT

On Thu, Sep 19, 2002 at 02:29:24AM -0700, David Wright wrote:

> It's true, there isn't a need, meaning Cyrus could have been designed to
> use PAM directly as a security layer and not used SASL.

Huh? PAM is not a security layer. It is an API designed for local
authentication only. On the other hand, SASL is a _protocol_ designed
for remote client-server authentication, encryption and integrity
protection. There is _no_ relation between SASL and PAM. Of course you
can use PAM to implement the PLAIN SASL authentication method, and it is
also possible that some PAM module might use SASL to talk to a remote
authentication service, but these are implementation details.


Gabor Gombas                                       Eotvos Lorand University
E-mail:                         Hungary

Hosted Email Solutions

Invaluement Anti-Spam DNSBLs

Powered By FreeBSD   Powered By FreeBSD