[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: kpasswd

To: Allan Streib <astreib@indiana.edu>
Subject: Re: kpasswd
From: Tony Earnshaw <tonni@billy.demon.nl>
Date: Fri, 17 Oct 2003 00:23:34 +0200
Cc: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>, openldap-software@OpenLDAP.org
In-reply-to: <157E317F-0021-11D8-B9A5-000393033826@indiana.edu>
References: <157E317F-0021-11D8-B9A5-000393033826@indiana.edu>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4) Gecko/20030624

Allan Streib wrote:

The client MUA I'm using to send this mail has to smtp authenticate to the MTA. The MTA allows only digest-md5 or cram-md5 authentication. Although this is is nothing to do with Kerberos, how can you say that the client is not required to have support for SASL?
I believe the difference is you are talking about a SASL bind, and what we're discussing is a way to do a *simple* bind that is using a SASL mechanism on the back-end to do the authentication rather than having a password or password hash directly stored in the userPassword attribute.


Ah. Thanks.

--Tonni

--
Tony Earnshaw

Once the camel's head has entered your tent,
it's very difficult to stop the rest of the
animal from following it

http://www.billy.demon.nl
Mail: tonye-at-billy.demon.nl

References:
- Re: kpasswd
  - From: Allan Streib <astreib@indiana.edu>

Prev by Date: RE: slapindex utility and selective indexing
Next by Date: RE: slapindex utility and selective indexing
Index(es):
- Chronological
- Thread