SRP support for the cyrus-sasl-2.1.26_12 port

Kyle Amon amonk at backwatcher.com
Wed Feb 24 12:13:55 UTC 2016 

Hajimu,

Awesome!  Works for me, but why not just just make the SRP and SRP-SETPASS
options off by default?  I'm quite happy either way.  Just wondering.

Thanks much,

--Kyle

On Wed, 24 Feb 2016 19:48:38 +0900
Thus spake Hajimu UMEMOTO <ume at FreeBSD.org>:

> Hi,
> 
> >>>>> On Tue, 23 Feb 2016 18:25:05 -0800
> >>>>> Kyle Amon <amonk at backwatcher.com> said:  
> 
> amonk> I added support for SRP (including srp-setpass [so saslpasswd2 can
> amonk> store srp salts and verifiers in the sasl password database too, if
> amonk> so desired]) to the cyrus-sasl-2.1.26_12 port.  Two small patch files
> amonk> are attached. Please consider applying them (or something very similar)
> amonk> so that FreeBSD's cyrus-sasl port can support SRP "out of the box."
> amonk> SRP is and excellent, secure authentication method, support for it has
> amonk> long existed in cyrus-sasl, and that support should be easily obtainable
> amonk> by FreeBSD's users.  Help make the net a more secure place. :)  
> 
> I've committed to add security/cyrus-sasl2-srp.
> If we have the SRP and SRP-SETPASS options enabled by default, the SRP
> salts and verifiers will be stored to the sasldb as well.
> Perhaps, it is not desired by many people.  Therefore, I made the SRP
> plugin the separate port.
> 
> Sincerely,
> 
> --
> Hajimu UMEMOTO
> ume at mahoroba.org  ume at FreeBSD.org
> http://www.mahoroba.org/~ume/


-- 

  CA +1-778-819-UNIX                  BackWatcher, Inc.
  US +1-425-584-UNIX                  Information Security Solutions
 SIP amonk at backwatcher.com            www.backwatcher.com

INUM +883-5100-0990-1657  /  ISN UNIX*1917  /  C*NET 1-731-UNIX

GPG ed25519/F57091DBD60FBBB8 [ed25519/D60FBBB8]
    985C 5B61 4ACE C89A 0DEE  ECCD F570 91DB D60F BBB8

    rsa4096/CF001165F36E1CAB [rsa4096/F36E1CAB]
    6050 05B7 9FF1 CC21 3F00  CEBB CF00 1165 F36E 1CAB

OTR E1A46361 9FD0D801 0132D21A FE2E96BE 39E3F069 : amonk at backwatcher.com
    5AB3E0B8 31F6ADB4 9A7D2FC2 A8235281 5776701E : silcnet

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 195 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20160224/c6576789/attachment.sig>

More information about the freebsd-ports mailing list