On Thu, 3 Jul 2003, Guilden Crantz wrote: > I am currently running a Red Hat 8 server with sendmail 8.12.9 working quite > nicely. Unfortunately I'm having some problems with getting cyrus-imapd > 2.1.13 working. [snip] > THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS AUTH=DIGEST-MD5 [snip] > THREAD=ORDEREDSUBJECT THREAD=REFERENCES IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN > AUTH=DIGEST-MD5 AUTH=CRAM-MD5 [snip] > sasl_pwcheck_method: saslauthd
This is a FAQ that is covered in the SASL documentation and is beaten to death on the mailing lists. You can't use DIGEST-MD5 or any of the other shared secret mechanisms with saslauthd. >From Cyrus SASL doc/sysadmin.html: Shared secrets mechanisms The Cyrus SASL library also supports some "shared secret" authentication methods: CRAM-MD5 and its successor DIGEST-MD5. ... Put another way, **you cannot use saslauthd with these methods**. If you do not wish to advertise these methods for that reason (i.e. you are only using saslauthd for password verification), then either remove the non-plaintext plugins (those other than login and plain) from the plugin directory, or use the mech_list option to disable them. This means you want to set: sasl_mech_list: PLAIN LOGIN in your imapd.conf, or (more likely) remove the plugins. -Rob -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
