Authen::SASL::Perl man page on Oracle

Man page or keyword search:  
man Server   33470 pages
apropos Keyword Search (all sections)
Output format
Oracle logo
[printable version]

Authen::SASL::Perl(3) User Contributed Perl DocumentationAuthen::SASL::Perl(3)

       Authen::SASL::Perl -- Perl implementation of the SASL Authentication

	use Authen::SASL qw(Perl);

	$sasl = Authen::SASL->new(
	  mechanism => 'CRAM-MD5 PLAIN ANONYMOUS',
	  callback => {
	    user => $user,
	    pass => \&fetch_password

       Authen::SASL::Perl is the pure Perl implementation of SASL mechanisms
       in the Authen::SASL framework.

       At the time of this writing it provides the client part implementation
       for the following SASL mechanisms:

	   The Anonymous SASL Mechanism as defined in RFC 2245 resp.  in IETF
	   Draft draft-ietf-sasl-anon-03.txt from February 2004 provides a
	   method to anonymously access internet services.

	   Since it does no authentication it does not need to send any
	   confidential information such as passwords in plain text over the

	   The CRAM-MD5 SASL Mechanism as defined in RFC2195 resp.  in IETF
	   Draft draft-ietf-sasl-crammd5-XX.txt offers a simple challenge-
	   response authentication mechanism.

	   Since it is a challenge-response authentication mechanism no
	   passwords are transferred in clear-text over the wire.

	   Due to the simplicity of the protocol CRAM-MD5 is susceptible to
	   replay and dictionary attacks, so DIGEST-MD5 should be used in

	   The DIGEST-MD5 SASL Mechanism as defined in RFC 2831 resp.  in IETF
	   Draft draft-ietf-sasl-rfc2831bis-XX.txt offers the HTTP Digest
	   Access Authentication as SASL mechanism.

	   Like CRAM-MD5 it is a challenge-response authentication method that
	   does not send plain text passwords over the network.

	   Compared to CRAM-MD5, DIGEST-MD5 prevents chosen plaintext attacks,
	   and permits the use of third party authentication servers, so that
	   it is recommended to use DIGEST-MD5 instead of CRAM-MD5 when

	   The EXTERNAL SASL mechanism as defined in RFC 2222 allows the use
	   of external authentication systems as SASL mechanisms.

	   The GSSAPI SASL mechanism as defined in RFC 2222 resp. IETF Draft
	   draft-ietf-sasl-gssapi-XX.txt allows using the Generic Security
	   Service Application Program Interface [GSSAPI] KERBEROS V5 as as
	   SASL mechanism.

	   Although GSSAPI is a general mechanism for authentication it is
	   almost exlusively used for Kerberos 5.

	   The LOGIN SASL Mechanism as defined in IETF Draft
	   draft-murchison-sasl-login-XX.txt allows  the combination of
	   username and clear-text password to be used in a SASL mechanism.

	   It does does not provide a security layer and sends the credentials
	   in clear over the wire.  Thus this mechanism should not be used
	   without adequate security protection.

	   The Plain SASL Mechanism as defined in RFC 2595 resp. IETF Draft
	   draft-ietf-sasl-plain-XX.txt is another SASL mechanism that allows
	   username and clear-text password combinations in SASL environments.

	   Like LOGIN it sends the credentials in clear over the network and
	   should not be used without sufficient security protection.

       As for server support, only PLAIN, LOGIN and DIGEST-MD5 are supported
       at the time of this writing.

       "server_new" OPTIONS is a hashref that is only relevant for DIGEST-MD5
       for now and it supports the following options:

       - no_integrity
       - no_confidentiality

       which configures how the security layers are negotiated with the client
       (or rather imposed to the client).

       Authen::SASL, Authen::SASL::Perl::ANONYMOUS,
       Authen::SASL::Perl::CRAM_MD5, Authen::SASL::Perl::DIGEST_MD5,
       Authen::SASL::Perl::EXTERNAL, Authen::SASL::Perl::GSSAPI,
       Authen::SASL::Perl::LOGIN, Authen::SASL::Perl::PLAIN

       Peter Marschall <>

       Please report any bugs, or post any suggestions, to the perl-ldap
       mailing list <>

       Copyright (c) 2004-2006 Peter Marschall.	 All rights reserved. This
       document is distributed, and may be redistributed, under the same terms
       as Perl itself.

perl v5.16.3			  2010-03-11		 Authen::SASL::Perl(3)

List of man pages available for Oracle

Copyright (c) for man pages and the logo by the respective OS vendor.

For those who want to learn more, the polarhome community provides shell access and support.

[legal] [privacy] [GNU] [policy] [cookies] [netiquette] [sponsors] [FAQ]
Polarhome, production since 1999.
Member of Polarhome portal.
Based on Fawad Halim's script.
Vote for polarhome
Free Shell Accounts :: the biggest list on the net