[Dovecot] [PATCH] Support GSS-SPNEGO natively
Jason Gunthorpe
jgunthorpe at obsidianresearch.com
Wed Aug 13 23:35:48 EEST 2008
On Wed, Aug 13, 2008 at 04:23:46PM -0400, Timo Sirainen wrote:
> Committed the patch to v1.2 tree with some changes:
> http://hg.dovecot.org/dovecot-1.2/rev/641d761219a6
What happens when the winbind_spnego and the gssapi_spnego are
registered at once? I did not address this because I did not have
winbind in my tree at the time.. I imagine that the same 'if' that
surrounds the internal ntlm module is needed here..
Ideally though it would be nice if the config file could specify a
mapping from SASL name to internal module and NTLM_USE_WINBIND could
go away.
BTW, I have yet to find anything that uses this SASL mode.. MS did not
implement it in even the latest version of outlook, despite authoring
the standard. :( Thunderbird has all the machinery to support it
through SSPI, but it never parses the SASL name to use the
negotiate-sspi module, so it doesn't use it either.. Plus, nobody
outside of Windows sspi clients cares about NTLM.
Thanks,
Jason
More information about the dovecot
mailing list