Difference between revisions of "Simple Authentication and Security Layer"
Jump to navigation
Jump to search
(Created page with "{{#set:page type=article}} {{#set:thing type=software interface specification}} ==About== Simple Authentication and Security Layer refers to either: * a list of requirements ...") |
m (→Postfix-Dovecot: typofix) |
||
(2 intermediate revisions by the same user not shown) | |||
Line 2: | Line 2: | ||
{{#set:thing type=software interface specification}} | {{#set:thing type=software interface specification}} | ||
==About== | ==About== | ||
− | [[Simple Authentication and Security Layer]] refers to either: | + | [[Simple Authentication and Security Layer]] (SASL) refers to either: |
* a list of requirements for authentication mechanisms and protocols | * a list of requirements for authentication mechanisms and protocols | ||
* specific software that implements those requirements | * specific software that implements those requirements | ||
+ | ===Linux=== | ||
+ | In Linux, SASL may be handled by [[saslauthd]]. | ||
+ | |||
+ | To see if saslauthd is running: "ps aux | grep saslauthd" should return a process for every active connection (e.g. Rizzo shows half a dozen), not counting the grep command itself. | ||
+ | ==Postfix-Dovecot== | ||
+ | ''eventually make a page about this'' | ||
+ | |||
+ | Tests | ||
+ | * [[openssl]] - depending on what protocols you have enabled (pop3 or imap): | ||
+ | ** openssl s_client -connect <u>localhost</u>:imaps | ||
+ | ** openssl s_client -connect <u>localhost</u>:pop3s | ||
+ | |||
+ | If you are running this command from a different machine than your IMAP/POP3 server, replace "localhost" with the name or address of the server. | ||
+ | |||
+ | Type "QUIT" to exit, if openssl does not return you to a system prompt. | ||
+ | |||
+ | '''Caveat''': This can seem to be working and yet Dovecot/Postfix will still be reporting [[fatal: no SASL authentication mechanisms]]. | ||
+ | |||
==Links== | ==Links== | ||
===Reference=== | ===Reference=== | ||
* {{wikipedia}} | * {{wikipedia}} | ||
* [http://wiki.dovecot.org/Sasl Dovecot wiki] | * [http://wiki.dovecot.org/Sasl Dovecot wiki] |
Latest revision as of 19:06, 8 June 2011
About
Simple Authentication and Security Layer (SASL) refers to either:
- a list of requirements for authentication mechanisms and protocols
- specific software that implements those requirements
Linux
In Linux, SASL may be handled by saslauthd.
To see if saslauthd is running: "ps aux | grep saslauthd" should return a process for every active connection (e.g. Rizzo shows half a dozen), not counting the grep command itself.
Postfix-Dovecot
eventually make a page about this
Tests
- openssl - depending on what protocols you have enabled (pop3 or imap):
- openssl s_client -connect localhost:imaps
- openssl s_client -connect localhost:pop3s
If you are running this command from a different machine than your IMAP/POP3 server, replace "localhost" with the name or address of the server.
Type "QUIT" to exit, if openssl does not return you to a system prompt.
Caveat: This can seem to be working and yet Dovecot/Postfix will still be reporting fatal: no SASL authentication mechanisms.