--On Sonntag, 12. August 2001 14:59 +0200 Tarjei Huse <[EMAIL PROTECTED]> wrote:
> Q 2. Death by 11 nr II
> "Ok the db's are ok. still I am having problems".
> You are using pam-ldap & openldap 2.0.x for authentication, right?
>
> Ok. Bad idea. The reason is that OL2 also uses the sasl libs. Thus when
> you try to auth to the openldap server you get a reentrant crisis (or
> that was what the people who know what they are doing called it on the
> maillinglist). Here's basicly what happens:
>
> your client -> imap -> sasl -> pam-ldap (or any other) -> sasl -> openldap
>
> ok. Se sasl twice? Sasl does not like t be used twice (Oh! What a
> consumer society! ,)
Another possibility would be to link pam_ldap with the Netscape C SDK for
LDAP. This eliminates the second call to cyrus-sasl while still providing
LDAP over SSL.
--
Norbert Klasen
DAASI International GmbH phone: +49 7071 2970336
Wilhelmstr. 106 fax: +49 7071 295114
72074 Tübingen email: [EMAIL PROTECTED]
Germany web: http://www.daasi.de
