• Home
• About
  • Cyrus History
  • What is Cyrus
  • Who is Cyrus
  • Cyrus Bylaws
  • Cyrus Roadmap
• Support
  • Report a bug
  • Mailing Lists
  • Cyrus IRC
  • Documentation
• Downloads
  • Getting Started
  • Licensing
  • Server Distribution
• FAQ
• Contribute

Cyrus SASL library, version 2

SASL (Simple Authentication Security Layer) is an Internet standards-track method for remote computers to authenticate. The Cyrus SASL library makes supporting various SASL mechanisms easy for both client and server writers.

The Cyrus project is the implementation of an enterprise mail system by the Carnegie Mellon University Computing Services Department. We are interested in scalable, easy to administer systems.

The Cyrus SASL library distribution

Cyrus SASL library distribution

Documentation

• Read Me First
• Installation Documentation
• Information for upgrading from SASLv1
• SASLv1 to SASLv2 Application Conversion Guide

• A high-level overview of Cyrus SASL Components
• The Cyrus SASL for System Administrators
• Options for use with Cyrus SASL
• The SASL Application Programmer's Guide
• The SASL Plugin Programmer's Guide
• Advanced SASL usage

• Mac OS X Build Guide
• OS/390 Build Guide
• Win32 Build Guide

• RFC 1321: The MD5 Message-Digest Algorithm
• RFC 1939: Post Office Protocol - Version 3 (APOP/sasl_checkapop)
• RFC 2104: HMAC: Keyed-Hashing for Message Authentication
• RFC 2195: IMAP/POP AUTHorize Extention for Simple Challenge/Response
  draft-ietf-sasl-crammd5: The CRAM-MD5 SASL Mechanism (CRAM-MD5)
• RFC 2222: Simple Authentication and Security Layer (SASL) (KERBEROS_V4)
  draft-ietf-sasl-rfc2222bis: Simple Authentication and Security Layer (SASL) (EXTERNAL)
• RFC 2243: OTP Extended Responses
• RFC 2245: Anonymous SASL Mechanism
  draft-ietf-sasl-anon: Anonymous SASL Mechanism (ANONYMOUS)
• RFC 2289: A One-Time Password System
• RFC 2444: The One-Time-Password SASL Mechanism (OTP)
• RFC 2595: Using TLS with IMAP, POP, and ACAP
  draft-ietf-sasl-plain: Plain SASL Mechanism (PLAIN)
• RFC 2831: Using Digest Authentication as a SASL Mechanism
  draft-ietf-sasl-rfc2831bis: Using Digest Authentication as a SASL Mechanism (DIGEST-MD5)
• RFC 2945: The SRP Authentication and Key Exchange System
• RFC 3174: US Secure Hash Algorithm 1 (SHA1)
• draft-burdis-cat-srp-sasl: Secure Remote Password SASL Mechanism (SRP)
• draft-ietf-sasl-gssapi: SASL GSSAPI Mechanisms (GSSAPI)
• draft-ietf-sasl-saslprep: SASLprep: Stringprep profile for user names and passwords
• draft-murchison-sasl-login: The LOGIN SASL Mechanism (LOGIN) -- obsolete
• draft-newman-sasl-passdss: DSS Secured Password Authentication Mechanism (PASSDSS-3DES-1)
• draft-newman-sasl-c-api: The SASL C API (very rough draft)

• Using SASL: Pluggable Security
• Using SASL: CMU's Cyrus SASL Library
• Information on SASL mechanisms, profiles, servers and clients implementing SASL.
• FAQ from Sendmail.
• The Secure Remote Password Protocol paper by Thomas Wu
• TCL extensions for SASL
• The NTLM Authentication Protocol (NTLM)
• Common Internet File System (CIFS) Technical Reference (SMB/NTLM)

Go to the Project Cyrus Home Page
Go to the Andrew Systems Group homepage.