Cyrus SASL library, version 2
SASL (Simple Authentication Security Layer) is an Internet
standards-track method for remote computers to authenticate.  The
Cyrus SASL library makes supporting various SASL mechanisms easy for
both client and server writers.
The Cyrus project is the implementation of an enterprise mail
system by the Carnegie Mellon University Computing Services Department.
We are interested in scalable, easy to administer systems.
The Cyrus SASL library distribution
http://asg.web.cmu.edu/cyrus/download/
Cyrus SASL
library distribution
Documentation
readme.html
Read Me First
install.html
Installation Documentation
upgrading.html
Information for upgrading from SASLv1
appconvert.html
SASLv1 to SASLv2 Application Conversion Guide
components.html
A high-level overview of Cyrus SASL Components
sysadmin.html
The Cyrus SASL for System Administrators
options.html
Options for use with Cyrus SASL
programming.html
The SASL Application Programmer's Guide
plugprog.html
The SASL Plugin Programmer's Guide
advanced.html
Advanced SASL usage
Special Platforms
macosx.html
Mac OS X Build Guide
os390.html
OS/390 Build Guide
windows.html
Win32 Build Guide
RFCs and drafts
rfc1321.txt
RFC 1321: The MD5 Message-Digest
Algorithm
rfc1939.txt
RFC 1939: Post Office Protocol - Version
3
(APOP/sasl_checkapop)
rfc2104.txt
RFC 2104: HMAC: Keyed-Hashing for Message
Authentication
rfc2195.txt
RFC 2195: IMAP/POP AUTHorize Extention for
Simple Challenge/Response
draft-ietf-sasl-crammd5-xx.txt
draft-ietf-sasl-crammd5: The CRAM-MD5 SASL Mechanism
(CRAM-MD5)
rfc2222.txt
RFC 2222: Simple Authentication and
Security Layer (SASL)
(KERBEROS_V4)
draft-ietf-sasl-rfc2222bis-xx.txt
draft-ietf-sasl-rfc2222bis: Simple Authentication and Security Layer
(SASL)
(EXTERNAL)
rfc2243.txt
RFC 2243: OTP Extended Responses
rfc2245.txt
RFC 2245: Anonymous SASL Mechanism
draft-ietf-sasl-anon-xx.txt
draft-ietf-sasl-anon: Anonymous SASL Mechanism
(ANONYMOUS)
rfc2289.txt
RFC 2289: A One-Time Password System
rfc2444.txt
RFC 2444: The One-Time-Password SASL
Mechanism
(OTP)
rfc2595.txt
RFC 2595: Using TLS with IMAP, POP, and
ACAP
draft-ietf-sasl-plain-xx.txt
draft-ietf-sasl-plain: Plain SASL Mechanism
(PLAIN)
rfc2831.txt
RFC 2831: Using Digest Authentication as a
SASL Mechanism
draft-ietf-sasl-rfc2831bis-xx.txt
draft-ietf-sasl-rfc2831bis: Using Digest Authentication as a SASL
Mechanism
(DIGEST-MD5)
rfc2945.txt
RFC 2945: The SRP Authentication and Key
Exchange System
rfc3174.txt
RFC 3174: US Secure Hash Algorithm 1 (SHA1)
draft-burdis-cat-srp-sasl-xx.txt
draft-burdis-cat-srp-sasl: Secure Remote Password SASL
Mechanism
(SRP)
draft-ietf-sasl-gssapi-xx.txt
draft-ietf-sasl-gssapi: SASL GSSAPI Mechanisms
(GSSAPI)
draft-ietf-sasl-saslprep-xx.txt
draft-ietf-sasl-saslprep: SASLprep: Stringprep profile for user names and passwords
draft-murchison-sasl-login-xx.txt
draft-murchison-sasl-login: The LOGIN SASL Mechanism
(LOGIN) --
obsolete
draft-newman-sasl-passdss-xx.txt
draft-newman-sasl-passdss: DSS Secured Password Authentication Mechanism
(PASSDSS-3DES-1)
draft-newman-sasl-c-api-xx.txt
draft-newman-sasl-c-api: The SASL C API
(very rough draft)
Other Documentation & Resources
http://www.oreillynet.com/pub/a/network/2002/04/09/sasl.html
Using SASL: Pluggable Security
http://www.oreillynet.com/pub/a/network/2002/04/30/sasl2.html
Using SASL: CMU's Cyrus SASL Library
http://www.melnikov.ca/mel/devel/SASL_info.html
Information on
SASL mechanisms, profiles, servers and clients implementing SASL.
http://www.sendmail.org/~ca/email/auth.html
FAQ
from
Sendmail.
http://www-cs-students.stanford.edu/~tjw/srp/ndss.html
The Secure Remote Password Protocol
paper by Thomas Wu
http://beepcore-tcl.sourceforge.net/tclsasl.html
TCL extensions
for SASL
http://davenport.sourceforge.net/ntlm.html
The NTLM Authentication Protocol
(NTLM)
http://www.snia.org/tech_activities/CIFS/CIFS-TR-1p00_FINAL.pdf
Common Internet File System (CIFS) Technical Reference
(SMB/NTLM)
http://asg.web.cmu.edu/cyrus
Go
to the Project Cyrus Home Page
http://asg.web.cmu.edu
Go
to the Andrew Systems Group homepage.
