Re: gss_wrap/gss_unwrap sasl buffers?

On Sun, 28 Jan 2007 15:38:54 -0800 Howard Chu hyc@symas.com wrote:

However, the only standards-compliant way to enable this functionality is through a SASL Bind. Are you actually reimplementing that as well? We've

I'm not reimplementing all SASL mechs. I'm just doing GSSAPI and GSS-SPNEGO. Doing ldap_sasl_bind_s + gss_init_sec_context et al is relatively simple.

talked about jettisoning Cyrus SASL in favor of "something else" but there haven't been any other implementations worth considering. Feel free to continue this conversation on the openldap-devel mailing list if you want to pursue it further.

When I get everyting dialed in maybe I'll post it. Then we can speculate further.

Mike