1
2
3PLUGINVIEWER(8)             System Manager's Manual            PLUGINVIEWER(8)
4
5
6

NAME

8       pluginviewer - list loadable SASL plugins and their properties
9

SYNOPSIS

11       pluginviewer   [-a]   [-s]   [-c]   [-b min=N,max=N]   [-e ssf=N,id=ID]
12       [-m MECHS] [-x AUXPROP_MECH] [-f FLAGS] [-p PATH]
13

DESCRIPTION

15       pluginviewer can be used by a server administrator to troubleshoot SASL
16       installations.   The  utility  can  list loadable (properly configured)
17       client and server side plugins, as well as auxprop plugins.
18

OPTIONS

20       -a     List auxprop plugins.
21
22       -s     List server authentication (SASL) plugins.
23
24       -c     List client authentication (SASL) plugins.
25
26       -b min=N1,max=N2
27              List client authentication (SASL) plugins.  Strength of the SASL
28              security layer in bits. min=N1 specifies the minimum strength to
29              use (1 => integrity protection). max=N2  specifies  the  maximum
30              strength  to  use.   Only SASL mechanisms which support security
31              layer with strength M such that N1 <= M <= N2 will be shown.
32
33       -e ssf=N,id=ID
34              Assume that an external security layer  (e.g.  TLS)  with  N-bit
35              strength  is  installed.   The ID is the authentication identity
36              used by the external security layer.
37
38       -m MECHS
39              Limit listed SASL plugins to the  ones  included  in  the  MECHS
40              (space separated) list.
41
42       -x AUXPROP_MECHS
43              Limit  listed  auxprop  plugins  to  the  one listed in the AUX‐
44              PROP_MECHS (space separated) list.
45
46       -f FLAGS
47              Set security flags. FLAGS is a comma separated list  of  one  or
48              more  of  the  following security flags: noplain (SASL mechanism
49              doesn´t send password in the clear during authentication), noac‐
50              tive  (require  protection from active attacks), nodict (require
51              mechanisms which are secure against passive dictionary attacks),
52              forwardsec  (require  forward secrecy), passcred (require mecha‐
53              nisms that can delegate client  credentials),  maximum  (require
54              all security flags).
55
56       -p PATH
57              Specifies a colon-separated search path for plugins.
58

SEE ALSO

60       rfc4422 - Simple Authentication and Security Layer (SASL)
61
62
63
64CMU SASL                         Apr 10, 2006                  PLUGINVIEWER(8)
Impressum