1PLUGINVIEWER(8) System Manager's Manual PLUGINVIEWER(8)
4
8 pluginviewer - list loadable SASL plugins and their properties
9
11 pluginviewer [-a] [-s] [-c] [-b min=N,max=N] [-e ssf=N,id=ID]
12 [-m MECHS] [-x AUXPROP_MECH] [-f FLAGS] [-p PATH]
13
15 pluginviewer can be used by a server administrator to troubleshoot SASL
16 installations. The utility can list loadable (properly configured)
17 client and server side plugins, as well as auxprop plugins.
18
20 -a List auxprop plugins.
21 -s List server authentication (SASL) plugins.
23 -c List client authentication (SASL) plugins.
25 -b min=N1,max=N2
27 List client authentication (SASL) plugins. Strength of the SASL
28 security layer in bits. min=N1 specifies the minimum strength to
29 use (1 => integrity protection). max=N2 specifies the maximum
30 strength to use. Only SASL mechanisms which support security
31 layer with strength M such that N1 <= M <= N2 will be shown.
32 -e ssf=N,id=ID
34 Assume that an external security layer (e.g. TLS) with N-bit
35 strength is installed. The ID is the authentication identity
36 used by the external security layer.
37 -m MECHS
39 Limit listed SASL plugins to the ones included in the MECHS
40 (space separated) list.
41 -x AUXPROP_MECHS
43 Limit listed auxprop plugins to the one listed in the AUX‐
44 PROP_MECHS (space separated) list.
45 -f FLAGS
47 Set security flags. FLAGS is a comma separated list of one or
48 more of the following security flags: noplain (SASL mechanism
49 doesn´t send password in the clear during authentication), noac‐
50 tive (require protection from active attacks), nodict (require
51 mechanisms which are secure against passive dictionary attacks),
52 forwardsec (require forward secrecy), passcred (require mecha‐
53 nisms that can delegate client credentials), maximum (require
54 all security flags).
55 -p PATH
57 Specifies a colon-separated search path for plugins.
58
60 rfc4422 - Simple Authentication and Security Layer (SASL)
61CMU SASL Apr 10, 2006 PLUGINVIEWER(8)