On Fri, May 11, 2001 at 03:11:47PM -0500, [EMAIL PROTECTED] wrote:

> You don't use sasldb with CRAM-MD5 passwords, then?  The problem
> with SASL is that it only uses PAM for Unix-style passwords.
> There is no account management facility in sasldb, or in SASL
> for that matter, other than what's available through PAM.
> We want to use CRAM-MD5 passwords, and that's why I'm looking
> for a place in SASL to add account management.

Note that SASL is a _protocol_ (see rfc2222), not an API. So "SASL has
no account management" has no meaning. You can add account management
to applications using SASL, and PAM is an obvious choice for doing that.
Just call pam_acct_mgmt() after you have authenticated the client with
SASL (and provide a PAM module that performs the accounting actions you
need).

Gabor

-- 
Gabor Gombas                                       Eotvos Lorand University
E-mail: [EMAIL PROTECTED]                        Hungary

Reply via email to