Re: auxprop pwcheck with sasl ldapdb and openldap backend not working

"PFiver via SASL" <sasl@xxxxxxxxxxxxxxxxxx> · Sat, 6 Nov 2021 17:43:32 -0400

btw. the reason why I thing auxprop-hashed will not work in ldap, is this:

➜  cyrus-sasl git:(master) git describe HEAD                                                                 
cyrus-sasl-2.1.27-182-gd00e7332
➜  cyrus-sasl git:(master) git grep SASL_AUXPROP_VERIFY_AGAINST_HASH
include/saslplug.h:#define SASL_AUXPROP_VERIFY_AGAINST_HASH 0x10
plugins/sasldb.c:    verify_against_hashed_password = flags & SASL_AUXPROP_VERIFY_AGAINST_HASH;
plugins/sasldb.c:          is always present if SASL_AUXPROP_VERIFY_AGAINST_HASH is specified.
plugins/sasldb.c:          When SASL_AUXPROP_VERIFY_AGAINST_HASH is set, we just clear userPassword. */
plugins/sql.c:    verify_against_hashed_password = flags & SASL_AUXPROP_VERIFY_AGAINST_HASH;
plugins/sql.c:     is always present if SASL_AUXPROP_VERIFY_AGAINST_HASH is specified.
plugins/sql.c:     When SASL_AUXPROP_VERIFY_AGAINST_HASH is set, we just clear userPassword. */

And I generally get the impression, that the SASL ldapdb module is generally "not in very good shape".

Now I am trying to find out about that /etc/*/Cyrus.conf ...

Cyrus
  / SASL / see
discussions
  +
participants
  +
delivery options
Permalink