Date: Wed, 24 Feb 2016 04:13:40 -0800 From: Kyle Amon <amonk@backwatcher.com> To: Hajimu UMEMOTO <ume@FreeBSD.org> Cc: freebsd-ports@freebsd.org Subject: Re: SRP support for the cyrus-sasl-2.1.26_12 port Message-ID: <20160224041340.36f44ebf@envy.sec.gnutec.com> In-Reply-To: <ygeziuqfkop.wl-ume@FreeBSD.org> References: <20160223182505.066765fb@envy.sec.gnutec.com> <ygeziuqfkop.wl-ume@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--Sig_/5Edwxn8d7B7191QTyyVEFDm Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable Hajimu, Awesome! Works for me, but why not just just make the SRP and SRP-SETPASS options off by default? I'm quite happy either way. Just wondering. Thanks much, --Kyle On Wed, 24 Feb 2016 19:48:38 +0900 Thus spake Hajimu UMEMOTO <ume@FreeBSD.org>: > Hi, >=20 > >>>>> On Tue, 23 Feb 2016 18:25:05 -0800 > >>>>> Kyle Amon <amonk@backwatcher.com> said: =20 >=20 > amonk> I added support for SRP (including srp-setpass [so saslpasswd2 can > amonk> store srp salts and verifiers in the sasl password database too, if > amonk> so desired]) to the cyrus-sasl-2.1.26_12 port. Two small patch fi= les > amonk> are attached. Please consider applying them (or something very sim= ilar) > amonk> so that FreeBSD's cyrus-sasl port can support SRP "out of the box." > amonk> SRP is and excellent, secure authentication method, support for it= has > amonk> long existed in cyrus-sasl, and that support should be easily obta= inable > amonk> by FreeBSD's users. Help make the net a more secure place. :) =20 >=20 > I've committed to add security/cyrus-sasl2-srp. > If we have the SRP and SRP-SETPASS options enabled by default, the SRP > salts and verifiers will be stored to the sasldb as well. > Perhaps, it is not desired by many people. Therefore, I made the SRP > plugin the separate port. >=20 > Sincerely, >=20 > -- > Hajimu UMEMOTO > ume@mahoroba.org ume@FreeBSD.org > http://www.mahoroba.org/~ume/ --=20 CA +1-778-819-UNIX BackWatcher, Inc. US +1-425-584-UNIX Information Security Solutions SIP amonk@backwatcher.com www.backwatcher.com INUM +883-5100-0990-1657 / ISN UNIX*1917 / C*NET 1-731-UNIX GPG ed25519/F57091DBD60FBBB8 [ed25519/D60FBBB8] 985C 5B61 4ACE C89A 0DEE ECCD F570 91DB D60F BBB8 rsa4096/CF001165F36E1CAB [rsa4096/F36E1CAB] 6050 05B7 9FF1 CC21 3F00 CEBB CF00 1165 F36E 1CAB OTR E1A46361 9FD0D801 0132D21A FE2E96BE 39E3F069 : amonk@backwatcher.com 5AB3E0B8 31F6ADB4 9A7D2FC2 A8235281 5776701E : silcnet --Sig_/5Edwxn8d7B7191QTyyVEFDm Content-Type: application/pgp-signature Content-Description: OpenPGP digital signature -----BEGIN PGP SIGNATURE----- iF4EARYKAAYFAlbNnnQACgkQ9XCR29YPu7jjZAEA5oSzAEP0cgF2VcUYh/YwPN6f R3iebyySG3eLXWRSqcUA/0dpDk0VGkfYle7+FtS5J5hmv1Gldc4h9Rl1YbhpQ2oH =wnxB -----END PGP SIGNATURE----- --Sig_/5Edwxn8d7B7191QTyyVEFDm--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20160224041340.36f44ebf>