#Note sasl is required for SMTP-AUTH, and imap (and horde).
#
# This is not a shell script, it just looks like one.
#
# If you have trouble with installing Cyrus SASL then look at the
# the documentation that comes with it. Don't bother me about it, it has
# nothing to do with me!
#
# Gavin Stewart.

#Build sasl:
tar zxvf cyrus-sasl-2.1.6.tar.gz
cd cyrus-sasl-2.1.6

./configure --disable-gssapi --disable-krb4 --disable-otp --disable-digest --disable-cram --enable-plain --enable-login --with-saslauthd

#Then in saslauthd subdir:
#(This is because something appears to break with configure, this fixes it).
#DONT FORGET THIS STEP!!!
cd saslauthd
./configure --with-ldap --disable-krb4 --disable-gssapi

#Go back up (..)
#then make.
cd ..
make

#as root
make install
#make symbolic link for libs (sasl needs this, dont ignore it):
ln -s /usr/local/lib/sasl2 /usr/lib/sasl2
vi /etc/ld.so.conf
#add /usr/local/lib to /etc/ld.so.conf if neccessary
/sbin/ldconfig

#Put the provided saslauthd.conf in /usr/local/etc/
#(from openbottle-core package)
cp cyrus/saslauthd.conf /usr/local/etc/
#Create sasl user
/usr/sbin/adduser sasl
#Create state directory, fix ownership:
mkdir -p /var/state/saslauthd
chown sasl.sasl /var/state/saslauthd
#Can now start daemon (use provided init script: sasl_cyrus.init later)
/usr/local/sbin/saslauthd -a ldap

#If there is a user already defined in ldap, with a password:
#you can test it with testsaslauthd
#
#(If you haven't got a user defined yet, you can go back to the
# configure_ldap.txt doc and see how.)
#
# Under the cyrus-sasl source tree again:
cd saslauthd
vi Makefile
#append -I. to INCLUDES
make testsaslauthd

#you can test sasl ldap authentication with:
./testsaslauthd -u username -p password
#eg: ./testsaslauthd -u test@example.com -p secret

#sendmail needs to use sasl for SMTP-AUTH
cd /usr/lib/sasl2
vi Sendmail.conf
#Create the line: pwcheck_method: saslauthd