Re: cyrus-sasl support in -daemon-heavy (#296203, #292906)

* Hendrik Sattler

 > From /etc/exim4/conf.d/auth/30_exim4-config_examples:
 > # Authenticate against local passwords using sasl2-bin
 > # Requires exim_uid to be a member of sasl group, see
 > README.SMTP-AUTH

* Marc Haber

 > What would be the difference?
 >
 > I do not know. People, please enlighten me.

  I assume the current packages only supports saslauthd, which is a 
 quite plain autenthication daemon that replies OK or not OK when asked
 to verify a plain-text tuple of username/password.  It uses SASL as its
 backend, while Exim simply talks to it over a standard UNIX socket.
 saslauthd was formerly called "pwcheck", by the way.

  If you enable native SASL support I assume Exim will be able to
 support all the SASL mechanisms through libsasl - saslauthd are only
 only able to verify plaintext usernames/password, while SASL itself
 supports challenge-response mechanisms such as DIGEST-MD5.

  (The above are based on assumptions, though.  I've never used Exim's
 intrinsic SASL support.)

--

-- 
Tore Anderson