From owner-freebsd-current Sun Feb 9 16: 2:10 2003 Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 3444237B405 for ; Sun, 9 Feb 2003 16:02:09 -0800 (PST) Received: from naboo.blacktrap.net (212.68.218.22.brutele.be [212.68.218.22]) by mx1.FreeBSD.org (Postfix) with ESMTP id D36A243FBD for ; Sun, 9 Feb 2003 16:02:05 -0800 (PST) (envelope-from olinether@blacktrap.net) Received: from naboo.blacktrap.net (localhost [127.0.0.1]) by naboo.blacktrap.net (8.12.3/8.12.3) with ESMTP id h1A028Lc007739; Mon, 10 Feb 2003 01:02:08 +0100 (CET) (envelope-from olinether@naboo.blacktrap.net) Received: (from olinether@localhost) by naboo.blacktrap.net (8.12.3/8.12.3/Submit) id h1A01ZgT007734; Mon, 10 Feb 2003 01:01:35 +0100 (CET) Date: Mon, 10 Feb 2003 01:01:35 +0100 From: Olivier Dony To: Sergey Mokryshev Cc: freebsd-current@freebsd.org Subject: Re: Getting an OpenPAM module to work on 5.0-RELEASE Message-ID: <20030210010135.A7711@naboo.blacktrap.net> References: <20030209102306.A6880@naboo.blacktrap.net> <20030209195527.V419-100000@lemori.mokr.ru> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5.1i In-Reply-To: <20030209195527.V419-100000@lemori.mokr.ru>; from mokr@mokr.net on Sun, Feb 09, 2003 at 08:03:54PM +0300 Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On Sun, Feb 09, 2003 at 08:03:54PM +0300, Sergey Mokryshev wrote: > On Sun, 9 Feb 2003, Olivier wrote: > > > Hi, > > > > I'm trying to write a MySQL authentication PAM module to be used with > > Cyrus-imapd2 and salsauthd, since pam-mysql is broken wrt OpenPAM. > > I started from the base modules source and added mysql code in it. The problem > > is to get the compiled shared library to work. > > > Hi. > > Try to build native "auxprop" saslauthd mysql module. > It removes the need of extra abstraction layer (PAM) and permits SASL > special authentications (CRAM-MD5, DIGEST-MD5 etc). Ah yes, I thought about that too, but this stuff isn't documented at all it seems, and I need to be able to use blowfish for password encryption, because this has to be used with some other appplcations which are using crypt() and blowfish. From what I understand the saslauthd mysql module allows only to compare the given plaintext user whith another plaintext one stored in a DB. That won't work for me. But I don't understand much of this auxprop/mysql stuff, so I am probably mistaken, and would be most pleased to get explanations about how I can do this. Actually I had patched pam_mysql (on FreeBSD 4.x when pam_mysql was still working, to be able to use blowfish correctly with FreeBSD's crypt(), but my problem is really to get an OpenPAM module to work, I even tried to simply rename the pam_permit one, but have the same problem: openpam_load_module won't find/open it now matter what... Thanks a lot for your suggestions :-) Olivier To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message