Difference between revisions of "Simple Authentication and Security Layer"
Jump to navigation
Jump to search
(Created page with "{{#set:page type=article}} {{#set:thing type=software interface specification}} ==About== Simple Authentication and Security Layer refers to either: * a list of requirements ...") |
(Linux; postfix-dovecot) |
||
| Line 2: | Line 2: | ||
{{#set:thing type=software interface specification}} | {{#set:thing type=software interface specification}} | ||
==About== | ==About== | ||
| − | [[Simple Authentication and Security Layer]] refers to either: | + | [[Simple Authentication and Security Layer]] (SASL) refers to either: |
* a list of requirements for authentication mechanisms and protocols | * a list of requirements for authentication mechanisms and protocols | ||
* specific software that implements those requirements | * specific software that implements those requirements | ||
| + | ===Linux=== | ||
| + | In Linux, SASL may be handled by [[saslauthd]]. | ||
| + | |||
| + | To see if saslauthd is running: "ps aux | grep saslauthd" should return a process for every active connection (e.g. Rizzo shows half a dozen), not counting the grep command itself. | ||
| + | ==Postfix-Dovecot== | ||
| + | ''eventually make a page about this'' | ||
| + | |||
| + | Tests | ||
| + | * [[openssl]] - depending on what protocols you have enabled (pop3 or imap): | ||
| + | ** openssl s_client -connect rizzo:imaps | ||
| + | ** openssl s_client -connect rizzo:pop3s | ||
| + | |||
| + | This can seem to be working and yet dovecot/postifix will still be reporting [[fatal: no SASL authentication mechanisms]]. | ||
==Links== | ==Links== | ||
===Reference=== | ===Reference=== | ||
* {{wikipedia}} | * {{wikipedia}} | ||
* [http://wiki.dovecot.org/Sasl Dovecot wiki] | * [http://wiki.dovecot.org/Sasl Dovecot wiki] | ||
Revision as of 15:29, 8 June 2011
About
Simple Authentication and Security Layer (SASL) refers to either:
- a list of requirements for authentication mechanisms and protocols
- specific software that implements those requirements
Linux
In Linux, SASL may be handled by saslauthd.
To see if saslauthd is running: "ps aux | grep saslauthd" should return a process for every active connection (e.g. Rizzo shows half a dozen), not counting the grep command itself.
Postfix-Dovecot
eventually make a page about this
Tests
- openssl - depending on what protocols you have enabled (pop3 or imap):
- openssl s_client -connect rizzo:imaps
- openssl s_client -connect rizzo:pop3s
This can seem to be working and yet dovecot/postifix will still be reporting fatal: no SASL authentication mechanisms.