SRP support for the cyrus-sasl-2.1.26_12 port
Kyle Amon
amonk at backwatcher.com
Wed Feb 24 12:13:55 UTC 2016
Hajimu,
Awesome! Works for me, but why not just just make the SRP and SRP-SETPASS
options off by default? I'm quite happy either way. Just wondering.
Thanks much,
--Kyle
On Wed, 24 Feb 2016 19:48:38 +0900
Thus spake Hajimu UMEMOTO <ume at FreeBSD.org>:
> Hi,
>
> >>>>> On Tue, 23 Feb 2016 18:25:05 -0800
> >>>>> Kyle Amon <amonk at backwatcher.com> said:
>
> amonk> I added support for SRP (including srp-setpass [so saslpasswd2 can
> amonk> store srp salts and verifiers in the sasl password database too, if
> amonk> so desired]) to the cyrus-sasl-2.1.26_12 port. Two small patch files
> amonk> are attached. Please consider applying them (or something very similar)
> amonk> so that FreeBSD's cyrus-sasl port can support SRP "out of the box."
> amonk> SRP is and excellent, secure authentication method, support for it has
> amonk> long existed in cyrus-sasl, and that support should be easily obtainable
> amonk> by FreeBSD's users. Help make the net a more secure place. :)
>
> I've committed to add security/cyrus-sasl2-srp.
> If we have the SRP and SRP-SETPASS options enabled by default, the SRP
> salts and verifiers will be stored to the sasldb as well.
> Perhaps, it is not desired by many people. Therefore, I made the SRP
> plugin the separate port.
>
> Sincerely,
>
> --
> Hajimu UMEMOTO
> ume at mahoroba.org ume at FreeBSD.org
> http://www.mahoroba.org/~ume/
--
CA +1-778-819-UNIX BackWatcher, Inc.
US +1-425-584-UNIX Information Security Solutions
SIP amonk at backwatcher.com www.backwatcher.com
INUM +883-5100-0990-1657 / ISN UNIX*1917 / C*NET 1-731-UNIX
GPG ed25519/F57091DBD60FBBB8 [ed25519/D60FBBB8]
985C 5B61 4ACE C89A 0DEE ECCD F570 91DB D60F BBB8
rsa4096/CF001165F36E1CAB [rsa4096/F36E1CAB]
6050 05B7 9FF1 CC21 3F00 CEBB CF00 1165 F36E 1CAB
OTR E1A46361 9FD0D801 0132D21A FE2E96BE 39E3F069 : amonk at backwatcher.com
5AB3E0B8 31F6ADB4 9A7D2FC2 A8235281 5776701E : silcnet
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 195 bytes
Desc: OpenPGP digital signature
URL: <http://lists.freebsd.org/pipermail/freebsd-ports/attachments/20160224/c6576789/attachment.sig>
More information about the freebsd-ports
mailing list