On Fri, 4 Jun 2004, Simon Matter wrote:
I'm using both versions on different servers and I can say they both work very well for me. The pam way is more flexible if you have more than one place where users are stored, say LDAP and MySQL, or you want to restrict logins by other means like time or whatever. The only problem I see with pam_ldap is with the cyrus-imapd virtual domains. AFAIK it doesn't work for more than one domain because PAM doesn't know about realms.
The CVS version of sasl has a -r option to saslauthd that reassembles the username and realm into [EMAIL PROTECTED] format which will alleviate this to some extent.
-Rob
-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Rob Siemborski * Andrew Systems Group * Cyert Hall 207 * 412-268-7456 Research Systems Programmer * /usr/contributed Gatekeeper
--- Cyrus Home Page: http://asg.web.cmu.edu/cyrus Cyrus Wiki/FAQ: http://cyruswiki.andrew.cmu.edu List Archives/Info: http://asg.web.cmu.edu/cyrus/mailing-list.html
