Difference between revisions of "Simple Authentication and Security Layer"
Jump to navigation
Jump to search
(Created page with "{{#set:page type=article}} {{#set:thing type=software interface specification}} ==About== Simple Authentication and Security Layer refers to either: * a list of requirements ...") |
m (→Postfix-Dovecot: typofix) |
||
| (2 intermediate revisions by the same user not shown) | |||
| Line 2: | Line 2: | ||
{{#set:thing type=software interface specification}} | {{#set:thing type=software interface specification}} | ||
==About== | ==About== | ||
| − | [[Simple Authentication and Security Layer]] refers to either: | + | [[Simple Authentication and Security Layer]] (SASL) refers to either: |
* a list of requirements for authentication mechanisms and protocols | * a list of requirements for authentication mechanisms and protocols | ||
* specific software that implements those requirements | * specific software that implements those requirements | ||
| + | ===Linux=== | ||
| + | In Linux, SASL may be handled by [[saslauthd]]. | ||
| + | |||
| + | To see if saslauthd is running: "ps aux | grep saslauthd" should return a process for every active connection (e.g. Rizzo shows half a dozen), not counting the grep command itself. | ||
| + | ==Postfix-Dovecot== | ||
| + | ''eventually make a page about this'' | ||
| + | |||
| + | Tests | ||
| + | * [[openssl]] - depending on what protocols you have enabled (pop3 or imap): | ||
| + | ** openssl s_client -connect <u>localhost</u>:imaps | ||
| + | ** openssl s_client -connect <u>localhost</u>:pop3s | ||
| + | |||
| + | If you are running this command from a different machine than your IMAP/POP3 server, replace "localhost" with the name or address of the server. | ||
| + | |||
| + | Type "QUIT" to exit, if openssl does not return you to a system prompt. | ||
| + | |||
| + | '''Caveat''': This can seem to be working and yet Dovecot/Postfix will still be reporting [[fatal: no SASL authentication mechanisms]]. | ||
| + | |||
==Links== | ==Links== | ||
===Reference=== | ===Reference=== | ||
* {{wikipedia}} | * {{wikipedia}} | ||
* [http://wiki.dovecot.org/Sasl Dovecot wiki] | * [http://wiki.dovecot.org/Sasl Dovecot wiki] | ||
Latest revision as of 19:06, 8 June 2011
About
Simple Authentication and Security Layer (SASL) refers to either:
- a list of requirements for authentication mechanisms and protocols
- specific software that implements those requirements
Linux
In Linux, SASL may be handled by saslauthd.
To see if saslauthd is running: "ps aux | grep saslauthd" should return a process for every active connection (e.g. Rizzo shows half a dozen), not counting the grep command itself.
Postfix-Dovecot
eventually make a page about this
Tests
- openssl - depending on what protocols you have enabled (pop3 or imap):
- openssl s_client -connect localhost:imaps
- openssl s_client -connect localhost:pop3s
If you are running this command from a different machine than your IMAP/POP3 server, replace "localhost" with the name or address of the server.
Type "QUIT" to exit, if openssl does not return you to a system prompt.
Caveat: This can seem to be working and yet Dovecot/Postfix will still be reporting fatal: no SASL authentication mechanisms.