source: postlfs/security/cyrus-sasl.xml@ 3597eb6

10.0 10.1 11.0 11.1 11.2 11.3 12.0 12.1 6.2 6.2.0 6.2.0-rc1 6.2.0-rc2 6.3 6.3-rc1 6.3-rc2 6.3-rc3 7.10 7.4 7.5 7.6 7.6-blfs 7.6-systemd 7.7 7.8 7.9 8.0 8.1 8.2 8.3 8.4 9.0 9.1 basic bdubbs/svn elogind gnome kde5-13430 kde5-14269 kde5-14686 kea ken/TL2024 ken/inkscape-core-mods ken/tuningfonts krejzi/svn lazarus lxqt nosym perl-modules plabs/newcss plabs/python-mods python3.11 qt5new rahul/power-profiles-daemon renodr/vulkan-addition systemd-11177 systemd-13485 trunk upgradedb xry111/intltool xry111/llvm18 xry111/soup3 xry111/test-20220226 xry111/xf86-video-removal
Last change on this file since 3597eb6 was 3597eb6, checked in by Randy McMurchy <randy@…>, 18 years ago

Added the 'User Notes' wiki link to each package page; changed all instances of .[so,a] to .{so,a} (brackets changed to braces); changed all replaceable tags to use angle brackets instead of square brackets to encapsulate the text - commit #7

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@5835 af4574ff-66df-0310-9fd7-8a98e5e911e0
  • Property mode set to 100644
File size: 10.6 KB
Line 
1<?xml version="1.0" encoding="ISO-8859-1"?>
2<!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.4//EN"
3 "http://www.oasis-open.org/docbook/xml/4.4/docbookx.dtd" [
4 <!ENTITY % general-entities SYSTEM "../../general.ent">
5 %general-entities;
6
7 <!ENTITY cyrus-sasl-download-http "http://ftp.andrew.cmu.edu/pub/cyrus-mail/cyrus-sasl-&cyrus-sasl-version;.tar.gz ">
8 <!ENTITY cyrus-sasl-download-ftp "ftp://ftp.andrew.cmu.edu/pub/cyrus-mail/cyrus-sasl-&cyrus-sasl-version;.tar.gz">
9 <!ENTITY cyrus-sasl-md5sum "dde02db234dea892bee298390890502e">
10 <!ENTITY cyrus-sasl-size "1.6 MB">
11 <!ENTITY cyrus-sasl-buildsize "16 MB">
12 <!ENTITY cyrus-sasl-time "0.3 SBU">
13]>
14
15<sect1 id="cyrus-sasl" xreflabel="Cyrus SASL-&cyrus-sasl-version;">
16 <?dbhtml filename="cyrus-sasl.html"?>
17
18 <sect1info>
19 <othername>$LastChangedBy$</othername>
20 <date>$Date$</date>
21 <keywordset>
22 <keyword role="package">cyrus-sasl-&cyrus-sasl-version;.tar</keyword>
23 <keyword role="ftpdir">cyrus-sasl</keyword>
24 </keywordset>
25 </sect1info>
26
27 <title>Cyrus SASL-&cyrus-sasl-version;</title>
28
29 <indexterm zone="cyrus-sasl">
30 <primary sortas="a-Cyrus-SASL">Cyrus SASL</primary>
31 </indexterm>
32
33 <sect2 role="package">
34 <title>Introduction to Cyrus SASL</title>
35
36 <para>The <application>Cyrus SASL</application> package contains a Simple
37 Authentication and Security Layer, a method for adding authentication
38 support to connection-based protocols. To use SASL, a protocol includes a
39 command for identifying and authenticating a user to a server and for
40 optionally negotiating protection of subsequent protocol interactions. If
41 its use is negotiated, a security layer is inserted between the protocol
42 and the connection.</para>
43
44 <bridgehead renderas="sect3">Package Information</bridgehead>
45 <itemizedlist spacing="compact">
46 <listitem>
47 <para>Download (HTTP): <ulink url="&cyrus-sasl-download-http;"/></para>
48 </listitem>
49 <listitem>
50 <para>Download (FTP): <ulink url="&cyrus-sasl-download-ftp;"/></para>
51 </listitem>
52 <listitem>
53 <para>Download MD5 sum: &cyrus-sasl-md5sum;</para>
54 </listitem>
55 <listitem>
56 <para>Download size: &cyrus-sasl-size;</para>
57 </listitem>
58 <listitem>
59 <para>Estimated disk space required: &cyrus-sasl-buildsize;</para>
60 </listitem>
61 <listitem>
62 <para>Estimated build time: &cyrus-sasl-time;</para>
63 </listitem>
64 </itemizedlist>
65
66 <bridgehead renderas="sect3">Additional Downloads</bridgehead>
67 <itemizedlist spacing="compact">
68 <listitem>
69 <para>Required patch: <ulink
70 url="&patch-root;/cyrus-sasl-&cyrus-sasl-version;-gcc4-1.patch"/></para>
71 </listitem>
72 </itemizedlist>
73
74 <bridgehead renderas="sect3">Cyrus SASL Dependencies</bridgehead>
75
76 <bridgehead renderas="sect4">Required</bridgehead>
77 <para role="required"><xref linkend="openssl"/></para>
78
79 <bridgehead renderas="sect4">Optional</bridgehead>
80 <para role="optional"><xref linkend="linux-pam"/>,
81 <xref linkend="openldap"/>,
82 <xref linkend="heimdal"/> or <xref linkend="mitkrb"/>,
83 <xref linkend="jdk"/>,
84 <xref linkend="mysql"/>,
85 <xref linkend="postgresql"/>,
86 <!-- <xref linkend="db"/>, -->
87 <xref linkend="gdbm"/>,
88 <!-- <xref linkend="courier"/>, -->
89 <ulink url="http://www.pdc.kth.se/kth-krb/">krb4</ulink>,
90 <ulink url="http://sqlite.org/">SQLite</ulink>, and
91 <ulink url="http://dmalloc.com/">Dmalloc</ulink></para>
92
93 <para condition="html" role="usernotes">User Notes:
94 <ulink url="&blfs-wiki;/cyrus-sasl"/></para>
95
96 </sect2>
97
98 <sect2 role="installation">
99 <title>Installation of Cyrus SASL</title>
100
101 <para>Install <application>Cyrus SASL</application> by
102 running the following commands:</para>
103
104<screen><userinput>patch -Np1 -i ../cyrus-sasl-&cyrus-sasl-version;-gcc4-1.patch &amp;&amp;
105./configure --prefix=/usr --sysconfdir=/etc \
106 --with-dbpath=/var/lib/sasl/sasldb2 \
107 --with-saslauthd=/var/run &amp;&amp;
108make</userinput></screen>
109
110 <para>This package does not come with a test suite. If you are planning
111 on using the GSSAPI authentication mechanism, it is recommended to test
112 it after installing the package using the sample server and client programs
113 which were built in the preceding step. Instructions for performing the
114 tests can be found at <ulink
115 url="&hints-root;/downloads/files/cyrus-sasl.txt"/>.</para>
116
117 <para>Now, as the <systemitem class="username">root</systemitem> user:</para>
118
119<screen role="root"><userinput>make install &amp;&amp;
120install -v -m644 saslauthd/saslauthd.8 /usr/share/man/man8 &amp;&amp;
121install -v -m755 -d /usr/share/doc/cyrus-sasl-&cyrus-sasl-version; &amp;&amp;
122install -v -m644 doc/{*.{html,txt,fig},ONEWS,TODO} \
123 saslauthd/LDAP_SASLAUTHD /usr/share/doc/cyrus-sasl-&cyrus-sasl-version; &amp;&amp;
124install -v -m700 -d /var/lib/sasl</userinput></screen>
125
126 </sect2>
127
128 <sect2 role="commands">
129 <title>Command Explanations</title>
130
131 <para><parameter>--with-dbpath=/var/lib/sasl/sasldb2</parameter>: This
132 parameter forces the <command>saslauthd</command> database to be created
133 in <filename class='directory'>/var/lib/sasl</filename> instead of
134 <filename class='directory'>/etc</filename>.</para>
135
136 <para><parameter>--with-saslauthd=/var/run</parameter>: This parameter
137 forces <command>saslauthd</command> to use the FHS compliant
138 directory <filename class='directory'>/var/run</filename> for variable
139 run-time data.</para>
140
141 <para><option>--with-ldap</option>: This parameter enables use
142 with <application>OpenLDAP</application>.</para>
143
144 <para><option>--enable-ldapdb</option>: This parameter enables the
145 LDAPDB authentication backend. There is a circular dependency with this
146 parameter which requires you to build the
147 <application>Cyrus SASL</application> package, then the
148 <application>OpenLDAP</application> package (with SASL support), then
149 finally building the <application>Cyrus SASL</application> package again
150 with this parameter.</para>
151
152 <para><command>install -v -m644 ...</command>: These commands
153 install documentation which is not installed by the
154 <command>make install</command> command.</para>
155
156 <para><command>install -v -m700 -d /var/lib/sasl</command>: This directory
157 must exist when starting <command>saslauthd</command>. If you're not going
158 to be running the daemon, you may omit the creation of this directory.</para>
159
160 </sect2>
161
162 <sect2 role="configuration">
163 <title>Configuring Cyrus SASL</title>
164
165 <sect3 id="cyrus-sasl-config">
166 <title>Config Files</title>
167
168 <para><filename>/etc/saslauthd.conf</filename> (for LDAP configuration)
169 and <filename>/usr/lib/sasl2/Appname.conf</filename> (where "Appname"
170 is the application defined name of the application)</para>
171
172 <indexterm zone="cyrus-sasl cyrus-sasl-config">
173 <primary sortas="e-etc-saslauthd.conf">/etc/saslauthd.conf</primary>
174 </indexterm>
175
176 </sect3>
177
178 <sect3>
179 <title>Configuration Information</title>
180
181 <para>See <ulink
182 url="file:///usr/share/doc/cyrus-sasl-&cyrus-sasl-version;/sysadmin.html"/>
183 for information on what to include in the application configuration files.
184 See <ulink
185 url="file:///usr/share/doc/cyrus-sasl-&cyrus-sasl-version;/LDAP_SASLAUTHD"/>
186 for configuring <command>saslauthd</command> with
187 <application>OpenLDAP</application>.</para>
188
189 </sect3>
190
191 <sect3 id="cyrus-sasl-init">
192 <title>Init Script</title>
193
194 <para>If you need to run the <command>saslauthd</command> daemon at system
195 startup, install the <filename>/etc/rc.d/init.d/cyrus-sasl</filename>
196 init script included in the <xref linkend="bootscripts"/>
197 package.</para>
198
199 <indexterm zone="cyrus-sasl cyrus-sasl-init">
200 <primary sortas="f-cyrus-sasl-init">cyrus-sasl</primary>
201 </indexterm>
202
203<screen role="root"><userinput>make install-cyrus-sasl</userinput></screen>
204
205 <note>
206 <para>You'll need to modify the init script and replace the
207 <option><replaceable>&lt;authmech&gt;</replaceable></option> parameter
208 to the <option>-a</option> switch with your desired authentication
209 mechanism.</para>
210 </note>
211
212 </sect3>
213
214 </sect2>
215
216 <sect2 role="content">
217 <title>Contents</title>
218
219 <segmentedlist>
220 <segtitle>Installed Programs</segtitle>
221 <segtitle>Installed Libraries</segtitle>
222 <segtitle>Installed Directories</segtitle>
223
224 <seglistitem>
225 <seg>saslauthd, sasldblistusers2, and saslpasswd2</seg>
226 <seg>libjavasasl.so, libsasl2.so, and numerous SASL plugins and
227 Java classes</seg>
228 <seg>/usr/include/sasl, /usr/lib/java/classes/sasl, /usr/lib/sasl2,
229 /usr/share/doc/cyrus-sasl-&cyrus-sasl-version;, and /var/lib/sasl</seg>
230 </seglistitem>
231 </segmentedlist>
232
233 <variablelist>
234 <bridgehead renderas="sect3">Short Descriptions</bridgehead>
235 <?dbfo list-presentation="list"?>
236 <?dbhtml list-presentation="table"?>
237
238 <varlistentry id="saslauthd">
239 <term><command>saslauthd</command></term>
240 <listitem>
241 <para>is the SASL authentication server.</para>
242 <indexterm zone="cyrus-sasl saslauthd">
243 <primary sortas="b-saslauthd">saslauthd</primary>
244 </indexterm>
245 </listitem>
246 </varlistentry>
247
248 <varlistentry id="sasldblistusers2">
249 <term><command>sasldblistusers2</command></term>
250 <listitem>
251 <para>is used to list the users in the SASL password database.</para>
252 <indexterm zone="cyrus-sasl sasldblistusers2">
253 <primary sortas="b-sasldblistusers2">sasldblistusers2</primary>
254 </indexterm>
255 </listitem>
256 </varlistentry>
257
258 <varlistentry id="saslpasswd2">
259 <term><command>saslpasswd2</command></term>
260 <listitem>
261 <para>is used to set and delete a user's SASL password and
262 mechanism specific secrets in the SASL password database.</para>
263 <indexterm zone="cyrus-sasl saslpasswd2">
264 <primary sortas="b-saslpasswd2">saslpasswd2</primary>
265 </indexterm>
266 </listitem>
267 </varlistentry>
268
269 <varlistentry id="libsasl2">
270 <term><filename class='libraryfile'>libsasl2.so</filename></term>
271 <listitem>
272 <para>is a general purpose authentication library for server and
273 client applications.</para>
274 <indexterm zone="cyrus-sasl libsasl2">
275 <primary sortas="c-libsasl2">libsasl2.so</primary>
276 </indexterm>
277 </listitem>
278 </varlistentry>
279
280 </variablelist>
281
282 </sect2>
283
284</sect1>
Note: See TracBrowser for help on using the repository browser.