- 论坛徽章:
- 0
|
回复 #5 zlj2208 的帖子
Cyrus-SASL 2.1.x patches
NOTE from pieps: This page is mirrored from http://frost.ath.cx/software/cyrus-sasl-patches, AND is the property of the author.
His site was down occasionally, so I've mirrored it here for convenience.
If there's something wrong with this page, AND not with Brane's, feel free to email me at nick (at) pieps (dot/period) org
The following software is provided for free. You can do with it, whatever you want. Software is provided "AS IS", without any warranty at all (including the implied warranties of merchantability AND fitness for a particular purpose).
If you like this piece of software, send me a postcard from somewhere
Snail mail address:
Branko F. Gracnar
Rakitovec 13
3263 Gorica pri Slivnici
Slovenia
Europe
Available patches:
checkpw.c
This patch makes cyrus-sasl to authenticate crypt(3) hashed passwords from various backends (auxprop plugins) - so you can authenticate crypt hashed passwords in your sql database (this is probably why are you reading this homepage).
Patch adds the following plugin configuration directive:
* password_format: [plaintext|crypt|crypt_trad]
Installation
*
o Download cyrus-sasl-2.1.x.tar.gz from ftp://ftp.ANDrew.cmu.edu/pub/cyrus-mail/ (Also downloadable locally, here)
o Download checkpw.c patch from download page
o Unpack distribution (tar zxf cyrus-sasl-2.1.x.tar.gz)
o Enter source directory (cd cyrus-sasl-2.1.x)
o Apply patch (patch -p0 < ../cyrus-sasl-2.1.x-checkpw.c.patch)
o Run configure (./configure)
o Compile it (make)
o Install it (make install)
* FreeBSD ports collection
o Download FreeBSD version of checkpw.c patch from download page
o Put patch files in directory /usr/ports/security/cyrus-sasl2/files
Configuration
Configuration directive can be set to the following values:
* plaintext - passwords are stored in plaintext format - this is default
* crypt - passwords are stored as modular crypt hashes (md5 or blowfish crypt)
* crypt_trad - passwords are stored as des crypt hashes (2 character salt crypt)
If configuration directive password_format is not specified, then passwords are considered to be in a PLAINTEXT format.
Example mailserver configuration (file smtpd.conf):
pwcheck_method: auxprop
auxprop_plugin: sql
allowanonymouslogin: no
allowplaintext: yes
mech_list: PLAIN LOGIN
srp_mda: md5
srvtab: /dev/null
opiekeys: /dev/null
password_format: crypt
sql_user: username
sql_passwd: password
sql_hostnames: sql.example.org
sql_database: database_name
sql_select: SELECT password FROM mailbox WHERE username = '%u' AND realm = '%r'
Download
* version 2.1.19
* version 2.1.19, FreeBSD Ports edition
Contact
You are free to contact me on my personal email address. |
|