1basic_sasl_auth(8)          System Manager's Manual         basic_sasl_auth(8)
2
3
4

NAME

6       basic_sasl_auth  -  Basic  Authentication  using SASL (specifically the
7       cyrus-sasl authentication method)
8
9       Version 1.0
10

SYNOPSIS

12       basic_sasl_auth
13

DESCRIPTION

15       basic_sasl_auth is an installed binary helper for Squid. SASL  is  con‐
16       figurable  (somewhat  like  PAM).   Each service authenticating against
17       SASL identifies itself with an application name.  Each application  can
18       be configured independently by the SASL administrator.
19

CONFIGURATION

21       To    configure    the    authentication    method    used   the   file
22       basic_sasl_auth.conf can be placed in the appropriate location, usually
23       /usr/lib/sasl.
24
25       The authentication database is defined by the pwcheck_method parameter.
26       Only the PLAIN authentication mechanism is used.
27
28       Examples: pwcheck_method:sasldb use sasldb - the  default  if  no  conf
29       file is installed.  pwcheck_method:pam
30        - use PAM authentication database pwcheck_method:passwd
31        - use traditional /etc/passwd pwcheck_method:shadow
32        - use slightly less traditional /etc/shadow
33
34       Others  methods  may  be  supported by your cyrus-sasl implementation -
35       consult your cyrus-sasl documentation for information.
36
37       Typically the authentication database ( /etc/sasldb , /etc/shadow , PAM
38       )  can  not  be accessed by a normal user. You should use setuid/setgid
39       and an appropriate user/group on the executable to allow the  authenti‐
40       cator to access the appropriate password database. If the access to the
41       database is not permitted then the authenticator  will  typically  fail
42       with "-1, generic error".
43
44              chown root.mail basic_sasl_auth
45              chmod ug+s basic_sasl_auth
46
47       If  the  application name basic_sasl_auth will also be used for the PAM
48       service name if pwcheck_method:pam is chosen. And example PAM  configu‐
49       ration file basic_sasl_auth.pam is also included.
50

AUTHOR

52       This program was written by Ian Castle <ian.castle@coldcomfortfarm.net>
53
54       This  manual was written by Ian Castle <ian.castle@coldcomfortfarm.net>
55       Amos Jeffries <amosjeffries@squid-cache.org>
56

COPYRIGHT

58       This program and documentation is copyright to the authors named above.
59
60       Distributed under the GNU General Public License (GNU GPL) version 2 or
61       later (GPLv2+).
62

QUESTIONS

64       Questions  on  the usage of this program can be sent to the Squid Users
65       mailing list <squid-users@squid-cache.org>
66

REPORTING BUGS

68       Bug reports  need  to  be  made  in  English.   See  http://wiki.squid-
69       cache.org/SquidFaq/BugReporting for details of what you need to include
70       with your bug report.
71
72       Report bugs or bug fixes using http://bugs.squid-cache.org/
73
74       Report serious security bugs to Squid Bugs <squid-bugs@squid-cache.org>
75
76       Report ideas for new improvements to the Squid Developers mailing  list
77       <squid-dev@squid-cache.org>
78

SEE ALSO

80       squid(8),  SASL(3),  PAM(7),  passwd(1), shadow(5), chown(1), chmod(1),
81       GPL(7),
82       The Squid FAQ wiki http://wiki.squid-cache.org/SquidFaq
83       The Squid Configuration Manual http://www.squid-cache.org/Doc/config/
84
85
86
87                                                            basic_sasl_auth(8)