Difference between revisions of "Simple Authentication and Security Layer"
Jump to navigation
Jump to search
(Linux; postfix-dovecot) |
m (→Postfix-Dovecot: typofix) |
||
| (One intermediate revision by the same user not shown) | |||
| Line 14: | Line 14: | ||
Tests | Tests | ||
* [[openssl]] - depending on what protocols you have enabled (pop3 or imap): | * [[openssl]] - depending on what protocols you have enabled (pop3 or imap): | ||
| − | ** openssl s_client -connect | + | ** openssl s_client -connect <u>localhost</u>:imaps |
| − | ** openssl s_client -connect | + | ** openssl s_client -connect <u>localhost</u>:pop3s |
| + | |||
| + | If you are running this command from a different machine than your IMAP/POP3 server, replace "localhost" with the name or address of the server. | ||
| + | |||
| + | Type "QUIT" to exit, if openssl does not return you to a system prompt. | ||
| + | |||
| + | '''Caveat''': This can seem to be working and yet Dovecot/Postfix will still be reporting [[fatal: no SASL authentication mechanisms]]. | ||
| − | |||
==Links== | ==Links== | ||
===Reference=== | ===Reference=== | ||
* {{wikipedia}} | * {{wikipedia}} | ||
* [http://wiki.dovecot.org/Sasl Dovecot wiki] | * [http://wiki.dovecot.org/Sasl Dovecot wiki] | ||
Latest revision as of 19:06, 8 June 2011
About
Simple Authentication and Security Layer (SASL) refers to either:
- a list of requirements for authentication mechanisms and protocols
- specific software that implements those requirements
Linux
In Linux, SASL may be handled by saslauthd.
To see if saslauthd is running: "ps aux | grep saslauthd" should return a process for every active connection (e.g. Rizzo shows half a dozen), not counting the grep command itself.
Postfix-Dovecot
eventually make a page about this
Tests
- openssl - depending on what protocols you have enabled (pop3 or imap):
- openssl s_client -connect localhost:imaps
- openssl s_client -connect localhost:pop3s
If you are running this command from a different machine than your IMAP/POP3 server, replace "localhost" with the name or address of the server.
Type "QUIT" to exit, if openssl does not return you to a system prompt.
Caveat: This can seem to be working and yet Dovecot/Postfix will still be reporting fatal: no SASL authentication mechanisms.