Differences between version 3 and previous revision of SASLNotes.
Other diffs: Previous Major Revision, Previous Author, or view the Annotated Edit History
| Newer page: | version 3 | Last edited on Thursday, May 15, 2003 8:36:15 pm | by PerryLorier | Revert |
| Older page: | version 2 | Last edited on Thursday, May 15, 2003 8:25:05 pm | by PerryLorier | Revert |
@@ -43,8 +43,11 @@
by anonymous read
by * read
in your slapd.conf, preferably before any other access directive. For more information about ldap access directives see [LDAPNotes].
+----
+
+[SASL] stores passwords in /etc/sasldb and/or /etc/sasldb2 by default. Why it doesn't it do it somewhere in /var like it should is anyone's guess. However this means that /etc will have to be writable. Passwords are stored in these files __in plain text__, so make sure your permissions on them are correct. You can disable this by providing the -n parameter to saslpasswd2. You have been warned.
----
[SASL] has the concepts of realms. A "realm" is authentication mechanism dependant, but the general idea is that it works like a kerberos realm. By default you'll be using the realm which is the same as your hostname. If you're authenticating against a different host, make sure your realm is right or it isn't going to work.
