Cyrus SASL-2.1.26
      
      
        
          Introduction to Cyrus SASL
        
        
          The Cyrus SASL package contains a
          Simple Authentication and Security Layer, a method for adding
          authentication support to connection-based protocols. To use SASL,
          a protocol includes a command for identifying and authenticating a
          user to a server and for optionally negotiating protection of
          subsequent protocol interactions. If its use is negotiated, a
          security layer is inserted between the protocol and the connection.
        
        
          This package is known to build and work properly using an LFS-7.7
          platform.
        
        
          Package Information
        
        
        
          Additional Downloads
        
        
        
          Cyrus SASL Dependencies
        
        
          Required
        
        
          OpenSSL-1.0.2
        
        
          Recommended
        
        
          Berkeley DB-6.1.19
        
        
          Optional
        
        
          Linux-PAM-1.1.8, MIT Kerberos
          V5-1.13.1, MariaDB-10.0.16 or MySQL, OpenJDK-1.8.0.31, OpenLDAP-2.4.40, PostgreSQL-9.4.1, SQLite-3.8.8.2,
          krb4
          and Dmalloc
        
        
          User Notes: http://wiki.linuxfromscratch.org/blfs/wiki/cyrus-sasl
        
       
      
        
          Installation of Cyrus SASL
        
        
          Install Cyrus SASL by running the
          following commands:
        
        
patch -Np1 -i ../cyrus-sasl-2.1.26-fixes-3.patch &&
autoreconf -fi &&
./configure --prefix=/usr        \
            --sysconfdir=/etc    \
            --enable-auth-sasldb \
            --with-dbpath=/var/lib/sasl/sasldb2 \
            --with-saslauthd=/var/run/saslauthd &&
make -j1
        
          This package does not come with a test suite. If you are planning
          on using the GSSAPI authentication mechanism, it is recommended to
          test it after installing the package using the sample server and
          client programs which were built in the preceding step.
          Instructions for performing the tests can be found at 
          http://www.linuxfromscratch.org/hints/downloads/files/cyrus-sasl.txt.
        
        
          Now, as the root user:
        
        
make install &&
install -v -dm755 /usr/share/doc/cyrus-sasl-2.1.26 &&
install -v -m644  doc/{*.{html,txt,fig},ONEWS,TODO} \
    saslauthd/LDAP_SASLAUTHD /usr/share/doc/cyrus-sasl-2.1.26 &&
install -v -dm700 /var/lib/sasl
       
      
        
          Command Explanations
        
        
          --with-dbpath=/var/lib/sasl/sasldb2:
          This switch forces the sasldb database to be created in
          /var/lib/sasl instead of /etc.
        
        
          --with-saslauthd=/var/run/saslauthd:
          This switch forces saslauthd to use the FHS
          compliant directory /var/run/saslauthd for variable run-time data.
        
        
          --enable-auth-sasldb: This
          switch enables SASLDB authentication backend.
        
        
          --with-dblib=gdbm: This switch forces
          GDBM to be used instead of
          Berkeley DB.
        
        
          --with-ldap: This switch enables the
          OpenLDAP support.
        
        
          --enable-ldapdb: This switch enables
          the LDAPDB authentication backend. There is a circular dependency
          with this parameter. See http://wiki.linuxfromscratch.org/blfs/wiki/cyrus-sasl
          for a solution to this problem.
        
        
          --enable-java: This switch enables
          compiling of the Java support
          libraries.
        
        
          --enable-login: This option enables
          unsupported LOGIN authentication.
        
        
          --enable-ntlm: This option enables
          unsupported NTLM authentication.
        
        
          install -v -m644 ...:
          These commands install documentation which is not installed by the
          make install command.
        
        
          install -v -m700 -d
          /var/lib/sasl: This directory must exist when
          starting saslauthd or
          using the sasldb plugin. If you're not going to be running the
          daemon or using the plugins, you may omit the creation of this
          directory.
        
       
      
        
          Configuring Cyrus SASL
        
        
          
            Config
            Files
          
          
            /etc/saslauthd.conf (for
            saslauthd LDAP
            configuration) and /etc/sasl2/Appname.conf (where "Appname" is the
            application defined name of the application)
          
         
        
        
          
            Init Script
          
          
            If you need to run the saslauthd daemon at system
            startup, install the /etc/rc.d/init.d/saslauthd init script included
            in the blfs-bootscripts-20150304 package
            using the following command:
          
          
make install-saslauthd
          
            ![[Note]](../images/note.png) 
            
              Note
            
            
              You'll need to modify /etc/sysconfig/saslauthd and replace the
              AUTHMECH
           
         
       
      
        
          Contents
        
        
          
            
              Installed Programs:
              pluginviewer, saslauthd,
              sasldblistusers2, saslpasswd2 and testsaslauthd
            
            
              Installed Library:
              libsasl2.so
            
            
              Installed Directories:
              /usr/include/sasl, /usr/lib/sasl2,
              /usr/share/doc/cyrus-sasl-2.1.26 and /var/lib/sasl
            
           
         
        
          
            Short Descriptions
          
          
            
            
              
                | 
                    pluginviewer
                   | 
                    is used to list loadable SASL plugins and their
                    properties.
                   | 
              
                | 
                    saslauthd
                   | 
                    is the SASL authentication server.
                   | 
              
                | 
                    sasldblistusers2
                   | 
                    is used to list the users in the SASL password database
                    sasldb2. | 
              
                | 
                    saslpasswd2
                   | 
                    is used to set and delete a user's SASL password and
                    mechanism specific secrets in the SASL password database
                    sasldb2. | 
              
                | 
                    testsaslauthd
                   | 
                    is a test utility for the SASL authentication server.
                   | 
              
                | 
                    libsasl2.so | 
                    is a general purpose authentication library for server
                    and client applications.
                   | 
            
          
         
       
      
        Last updated on 2015-02-23 21:00:51 -0800