Codebase list cyrus-sasl2 / debian/2.1.27_101-g0780600+dfsg-2 debian / doc / sasldb.5.xml
debian/2.1.27_101-g0780600+dfsg-2

Tree @debian/2.1.27_101-g0780600+dfsg-2 (Download .tar.gz)

sasldb.5.xml @debian/2.1.27_101-g0780600+dfsg-2raw · history · blame 

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE refentry PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
"http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd">
<refentry>
  <refmeta>
    <refentrytitle>sasldb</refentrytitle>

    <manvolnum>5</manvolnum>
  </refmeta>

  <refnamediv>
    <refname>sasldb</refname>

    <refpurpose>auxiliary property plugin</refpurpose>
  </refnamediv>

  <refsynopsisdiv>
    <para>Cyrus SASL auxprop plugin to access the sasldb authentication
    backend</para>
  </refsynopsisdiv>

  <refsection>
    <title>Description</title>

    <para>This document describes configuration options for the Cyrus SASL
    auxiliary property plugin <option>sasldb</option>.</para>

    <para><option>sasldb</option> is the default and fallback plugin. It will
    be used if explicitly configured, but also if other mechanisms have failed
    to load e.g. because they haven't been configured properly.</para>

    <para>This plugin reads all user data from a Berkeley database. On Debian
    systems the default location for this database is
    <filename>/etc/sasldb2</filename>.</para>

    <para>Passwords are stored in plaintext format to enable usage of
    shared-secret mechanisms. To protect the passwords, access has been
    restricted to user <systemitem class="username">root</systemitem> and
    group <systemitem class="groupname">sasl</systemitem>. An application must
    be member of the <systemitem class="groupname">sasl</systemitem> group to
    conduct <option>sasldb</option> SASL authentication.</para>

    <para>Use the <citerefentry>
        <refentrytitle>saslpasswd2</refentrytitle>

        <manvolnum>8</manvolnum>
      </citerefentry> utility to create and modify <option>sasldb</option>
    users. The <citerefentry>
        <refentrytitle>sasldblistusers2</refentrytitle>

        <manvolnum>8</manvolnum>
      </citerefentry> command prints a list of existing
    <option>sasldb</option> users to <literal>STDOUT</literal>.</para>
  </refsection>

  <refsection>
    <title>Options</title>

    <para>The following configuration parameters are applicable in the context
    of the <option>sasldb</option> plugin:</para>

    <variablelist>
      <varlistentry>
        <term><parameter>sasldb_path</parameter>: (default:
        <filename>/etc/sasldb2</filename>)</term>

        <listitem>
          <para>Specifies the path to the database when
          <parameter>auxprop_plugin</parameter>: <option>sasldb</option> is
          used. The default path is system dependant, but usually
          <filename>/etc/sasldb2</filename>.</para>
        </listitem>
      </varlistentry>
    </variablelist>
  </refsection>

  <refsection>
    <title>Example</title>

    <para>The following example shows a typical <option>sasldb</option>
    configuration. The database is located at the default location
    <filename>/etc/sasldb2</filename>.</para>

    <programlisting>pwcheck_method: auxprop
auxprop_plugin: sasldb
mech_list: plain login cram-md5 digest-md5</programlisting>
  </refsection>

  <refsection>
    <title>See also</title>

    <para><citerefentry>
        <refentrytitle>authdaemond</refentrytitle>

        <manvolnum>5</manvolnum>
      </citerefentry>, <citerefentry>
        <refentrytitle>ldapdb</refentrytitle>

        <manvolnum>5</manvolnum>
      </citerefentry>, <citerefentry>
        <refentrytitle>libsasl</refentrytitle>

        <manvolnum>5</manvolnum>
      </citerefentry>, <citerefentry>
        <refentrytitle>saslauthd</refentrytitle>

        <manvolnum>8</manvolnum>
      </citerefentry>, <citerefentry>
        <refentrytitle>saslauthd.conf</refentrytitle>

        <manvolnum>5</manvolnum>
      </citerefentry>, <citerefentry>
        <refentrytitle>saslpasswd2</refentrytitle>

        <manvolnum>5</manvolnum>
      </citerefentry>, <citerefentry>
        <refentrytitle>sasldblistusers2</refentrytitle>

        <manvolnum>5</manvolnum>
      </citerefentry>, <citerefentry>
        <refentrytitle>sasldb</refentrytitle>

        <manvolnum>5</manvolnum>
      </citerefentry>, <citerefentry>
        <refentrytitle>sql</refentrytitle>

        <manvolnum>5</manvolnum>
      </citerefentry></para>
  </refsection>

  <refsection>
    <title>Readme files</title>

    <para><filename>README.Debian</filename></para>
  </refsection>

  <refsection>
    <title>Author</title>

    <para>This manual was written for the Debian distribution because the
    original program does not have a manual page. Parts of the documentation
    have been taken from the Cyrus SASL's
    <filename>options.html</filename>.</para>

    <para><address>Patrick Ben Koetter
<email>p@state-of-mind.de</email></address></para>
  </refsection>
</refentry>