Is cyrus-sasl-1.5.24 vulnerable to this exploit?

Hey folks, Is the cyrus-sasl-1.5.24 tarball vulnerable to this, or is just the RedHat rpm vulnerable? If the tarball is vulnerable, has it been fixed in 1.5.27? Thanks, Barton Security Advisory - RHSA-2001:150-06 --

Logging failed login attempts?

failed login attempts don't seem to appear in my logs for both pop and imapd daemons. is it possible to log them? Thanks, Barton

Is it possible to use 2 sasl_pwcheck_methods?

Hi, Is it possible to use 2 sasl_pwcheck_methods at the same time? for instance, I want to use PAM and sasldb, something like this: sasl_pwcheck_method: PAM, sasldb Thanks for the help, Barton

Disable dupelim?

How can I disable the elimination of duplicate messages? I've found posts talking about an -e option to deliver but this must no longer exist. I want to do something like this: /usr/cyrus/bin/deliver -m user user < file and have the file sent to the user mailbox even if it has been sent before.

Need help with PAM/mysql/sasl/cyrus

Hi folks, I'm having problems setting up PAM authentication, and I'm hoping someone can help me figure it out. I've searched through all the archives and tried everything I can find. -- Here's what I'm using: Redhat 7.0 (with all available updates) cyrus-sasl-1.5.24 cyrus-imapd-2.0.