X-Git-Url: https://git.hcoop.net/hcoop/debian/courier-authlib.git/blobdiff_plain/426e783363e20f878a4df0131ac76e294cf0948c..64ff59baf3361c2591d52e52bdddabebfcd21e4c:/NEWS.html diff --git a/NEWS.html b/NEWS.html dissimilarity index 95% index a36384b..bdfabcf 100644 --- a/NEWS.html +++ b/NEWS.html @@ -1,139 +1,174 @@ - -
- -This is the initial release of the Courier Authentication Library. See the -README file for background information on courier-authlib.
- -Upgrading from older versions of Courier packages that used to include -this authentication library as part of the package, instead of standalone, -should be as simple as:
-./configure -make -make install -make install-migrate -make install-configure- -
The Courier authentication library should not have any more requirements
-than the older Courier packages it used to be a part of. There may be an
-exception on some less-common platforms. They may require some additional
-stuff to be loaded before courier-authlib can be installed. This is because
-courier-authlib now uses libtool
, which is a new requirement.
-Courier-authlib now uses shared libraries in the place of separate
-authdaemond binaries in the previous versions. Some less-common platforms may
-require additional software to be installed because of that, see INSTALL for
-more information.
This new, self-sustaining Courier authentication library offers the -following benefits:
-I can only see one possible drawback. Only the daemonized configuration -will now be possible. This new version of the Courier authentication library -is, for all intents and purposes, the daemonized configuration of the -previous authentication library. The non-daemonized version of the -authentication library is no longer implemented. That code has been removed -for the simple reason that it can no longer be implemented, as a standalone -library. It's been clearly shown that the daemonized configuration is the -more flexible configuration, and is the only way to go. The daemonized -configuration was the default configuration for several years.
- -I can only see the following minuses from losing the non-daemonized -configuration. I believe the minuses are greatly outranked by the pluses.
-Currently, there are also some borderline configurations possible in a -non-daemonized configuration, such as using different authentication modules -completely for imap and pop3, or different authentication modules for -non-encrypted and encrypted connections. This will no longer be possible, but -I doubt that there's any valid reason to use such a strange setup.
- -The 'make install-migrate
' command tries to import the
-authentication configuration from any existing installed Courier package. The
-configuration files for courier-authlib will end up in
-/usr/local/lib/courier-authlib/etc/authlib
. The existing Courier
-packages don't really know how to use courier-authlib just yet. This will be
-the next step.
However, after installing courier-authlib you should be able to do some
-rudimentary testing by running 'authdaemond start
' (where
-authdaemond is what's in the /usr/local/lib/courier-authlib/sbin
-directory). The following commands should now work (make sure the
-authdaemond
and authtest
programs are the ones from
-/usr/local/lib/courier-authlib/sbin
directory, and not any
-existing Courier directory):
authtest userid -authtest userid password -authtest userid password newpassword -authenumerate- -
The first command displays the account's home directory, userid, groupid, -and other related data. The second command verifies whether the password is -valid, or not. The third command changes the password on the account (be -careful with that).
- -The goal is that everything should work automatically. In some cases, it
-might be necessary to modify the new authdaemonrc configuration file (unlike
-all othe configuration files, the install-migrate
script won't
-copy the existing authdaemonrc
, a new one will be installed).
-Manually edit it, and remove all authentication modules that are not needed,
-leaving only the actual ones that are used.
To generate additional debugging messages, edit the authdaemond startup -script (installed in /usr/local/bin by default), and add the following to the -script:
-DEBUG_LOGIN=2 -export DEBUG_LOGIN- -
Debugging messages from the authentication daemon processes will be sent
-to the syslog facility, and recorded in whatever log file syslog is
-configured to use (usually /var/log/messages
or
-/var/log/maillog
).
The Courier Authentication Library is a required component + that must be set up before installing other Courier packages: the + Courier Mail Server or its components (Courier-IMAP, SqWebMail, + or maildrop).
+ +The authentication library used to be included as a part of + these packages, it is now a standalone library.
+ +Upgrading from older versions of Courier packages that used to + include this authentication library internally should be as + simple as:
++./configure +make +make install +make install-migrate +make install-configure ++ +
The Courier authentication library should not have any more
+ requirements than the older Courier packages it used to be a part
+ of. There may be an exception on some less-common platforms. They
+ may require some additional stuff to be loaded before
+ courier-authlib can be installed. This is because courier-authlib
+ now uses libtool
, which is a new requirement.
+ Courier-authlib now uses shared libraries in the place of
+ separate authdaemond binaries in the previous versions. Some
+ less-common platforms may require additional software to be
+ installed because of that, see INSTALL for more information.
This new, self-sustaining Courier authentication library + offers the following benefits:
+ +I can only see one possible drawback. Only the daemonized + configuration will now be possible. This new version of the + Courier authentication library is, for all intents and purposes, + the daemonized configuration of the previous authentication + library. The non-daemonized version of the authentication library + is no longer implemented. That code has been removed for the + simple reason that it can no longer be implemented, as a + standalone library. It's been clearly shown that the daemonized + configuration is the more flexible configuration, and is the only + way to go. The daemonized configuration was the default + configuration for several years.
+ +I can only see the following minuses from losing the + non-daemonized configuration. I believe the minuses are greatly + outranked by the pluses.
+ +Currently, there are also some borderline configurations + possible in a non-daemonized configuration, such as using + different authentication modules completely for imap and pop3, or + different authentication modules for non-encrypted and encrypted + connections. This will no longer be possible, but I doubt that + there's any valid reason to use such an unusual setup.
+ +The 'make install-migrate
' command tries to
+ import the authentication configuration from any existing
+ installed Courier package. The configuration files for
+ courier-authlib will end up in
+ /usr/local/lib/courier-authlib/etc/authlib
. The
+ existing Courier packages don't really know how to use
+ courier-authlib just yet. This will be the next step.
However, after installing courier-authlib you should be able
+ to do some rudimentary testing by running 'authdaemond
+ start
' (where authdaemond is what's in the
+ /usr/local/lib/courier-authlib/sbin
directory). The
+ following commands should now work (make sure the
+ authdaemond
and authtest
programs are
+ the ones from /usr/local/lib/courier-authlib/sbin
+ directory, and not any existing Courier directory):
+authtest userid +authtest userid password +authtest userid password newpassword +authenumerate ++ +
The first command displays the account's home directory, + userid, groupid, and other related data. The second command + verifies whether the password is valid, or not. The third command + changes the password on the account (be careful with that).
+ +The goal is that everything should work automatically. In some
+ cases, it might be necessary to modify the new authdaemonrc
+ configuration file (unlike all othe configuration files, the
+ install-migrate
script won't copy the existing
+ authdaemonrc
, a new one will be installed). Manually
+ edit it, and remove all authentication modules that are not
+ needed, leaving only the actual ones that are used.
To generate additional debugging messages, edit the + authdaemond startup script (installed in /usr/local/bin by + default), and add the following to the script:
++DEBUG_LOGIN=2 +export DEBUG_LOGIN ++ +
Debugging messages from the authentication daemon processes
+ will be sent to the syslog facility, and recorded in whatever log
+ file syslog is configured to use (usually
+ /var/log/messages
or
+ /var/log/maillog
).