On Oct 20, 2004, at 5:17 PM, Giuliano Gavazzi wrote:
> At 4:08 pm -0400 2004/10/20, Michael Johnson wrote:
>> So now, I have:
>>
>> fixed_cram:
>> driver = cram_md5
>> public_name= CRAM-MD5
>> # server_secret = ${lookup{$1}lsearch{/etc/relayers}{$value}{fail}}
>> server_secret=${if and {\
>> {!eq{$1}{}}\
>> {!eq{$2}{}}\
>> {pam{$1:${sg{$2}{:}{::}}}}\
>> }\
>> {yes}{no}}
>>
>> server_set_id = $1
>>
>> I've tried it with the server_set_id commented out and as is, and
>> neither way seems to work. I'm seeing the following in my logs:
>>
>> 535 Incorrect authentication data (set_id=michael)
>
> well, how do you think that a server_secret = to a boolean value is
> going to work?
That's the trick...I don't know. I'm beginning to understand it now,
though.
> The server_secret is the password in clear, so you could lookup the
> user ($1) in a database to find the corresponding password.
So the server_set_id should still be $1 since that's the ID of the user
I'm trying to check, right?
-Michael
----------------------
English women don't pump gas naked!
--Marge Simpson
