Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

pluginviewer(8) [debian man page]

PLUGINVIEWER(8)                                               System Manager's Manual                                              PLUGINVIEWER(8)

NAME

       pluginviewer - list loadable SASL plugins and their properties

SYNOPSIS

       pluginviewer [-a] [-s] [-c] [-b min=N,max=N] [-e ssf=N,id=ID] [-m MECHS] [-x AUXPROP_MECH] [-f FLAGS] [-p PATH]

DESCRIPTION

       pluginviewer can be used by a server administrator to troubleshoot SASL installations.  The utility can list loadable (properly configured)
       client and server side plugins, as well as auxprop plugins.

OPTIONS

       -a     List auxprop plugins.

       -s     List server authentication (SASL) plugins.

       -c     List client authentication (SASL) plugins.

       -b min=N1,max=N2
              List client authentication (SASL) plugins.  Strength of the SASL security layer in bits. min=N1 specifies the  minumum  strength  to
              use  (1  =>  integrity protection). max=N2 specifies the maximum strength to use.  Only SASL mechanisms which support security layer
              with strength M such that N1 <= M <= N2 will be shown.

       -e ssf=N,id=ID
              Assume that an external security layer (e.g. TLS) with N-bit strength is installed.  The ID is the authentication identity  used  by
              the external security layer.

       -m MECHS
              Limit listed SASL plugins to the ones included in the MECHS (space separated) list.

       -x AUXPROP_MECHS
              Limit listed auxprop plugins to the one listed in the AUXPROP_MECHS (space separated) list.

       -f FLAGS
              Set  security flags. FLAGS is a comma separated list of one or more of the following security flags: noplain (SASL mechanism doesn't
              send password in the clear during authentication), noactive (require protection from active  attacks),  nodict  (require  mechanisms
              which  are  secure  against passive dictionary attacks), forwardsec (require forward secrecy), passcred (require mechanisms that can
              delegate client credentials), maximum (require all security flags).

       -p PATH
              Specifies a colon-separated search path for plugins.

SEE ALSO

       rfc2222 - Simple Authentication and Security Layer (SASL)

CMU SASL                                                           Apr 10, 2006                                                    PLUGINVIEWER(8)

Check Out this Related Man Page

SASL-SAMPLE-CLIENT(8)					      System Manager's Manual					     SASL-SAMPLE-CLIENT(8)

NAME

       sasl-sample-client -- Sample client program for demonstrating and testing SASL authentication.

SYNOPSIS

       sasl-sample-client [-b min=N,max=N]  [-e ssf=N,id=ID]  [-m MECH]  [-f FLAGS]  [-i local=IP,remote=IP]  [-p PATH]  [-s NAME]  [-n FQDN]  [-u
       ID]  [-a ID]

DESCRIPTION

       This manual page documents briefly the sasl-sample-client command.

       This manual page was written for the Debian distribution because the original program does not have a manual page.

       sasl-sample-client is a program to demonstrate and test SASL authentication. It implements the client part, and the server part	is  avail-
       able as sasl-sample-server.

OPTIONS

       A summary of options is included below.

       -b	 Number of bits to use for encryption.

		 min=N	   minimum number of bits to use (1 => integrity)

		 max=N	   maximum number of bits to use

       -e	 Assume external encryption.

		 ssf=N	   external mech provides N bits of encryption

		 id=ID	   external mech provides authentication id ID

       -m	 Force use of MECH for security.

       -f	 Set security flags.

		 noplain   require security vs. passive attacks

		 noactive  require security vs. active attacks

		 nodict    require security vs. passive dictionary attacks

		 forwardsec
			   require forward secrecy

		 maximum   require all security flags

		 passcred  attempt to pass client credentials

       -i	 Set IP addresses (required by some mechs).

		 local=IP;PORT
			   set local address to IP, port PORT

		 remote=IP;PORT
			   set remote address to IP, port PORT

       -p	 Colon-separated search path for mechanisms.

       -r	 Realm to use.

       -s	 Service name passed to mechanisms.

       -n	 Server fully-qualified domain name.

       -u	 User (authorization) id to request.

       -a	 Id to authenticate as.

       -d	 Disable client-send-first.

       -l	 Enable server-send-last.

SEE ALSO

       For additional information, please see /usr/share/doc/sasl2-bin/testing.txt

AUTHOR

       This  manual page was written by Fabian Fagerholm fabbe@debian.org for the Debian system (but may be used by others). Permission is granted
       to redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation;  either
       version 2 of the License, or (at your option) any later version.

															     SASL-SAMPLE-CLIENT(8)
Man Page