Release Digest: GNU, November 21, 2003
Nov 22, 2003, 00:00 (0 Talkback[s])
Re-Imagining Linux Platforms to Meet the Needs of Cloud Service Providers
GNU SASL 0.0.9 alpha
GNU SASL is an implementation of the Simple Authentication and
Security Layer framework and a few common SASL mechanisms. SASL is
used by network servers (e.g., IMAP, SMTP) to request
authentication from clients, and in clients to authenticate against
GNU SASL contains a library (`libgsasl'), a command line utility
(`gsasl') to access the library from the shell, and a manual. The
library includes support for the SASL framework (with
authentication functions and application data privacy and integrity
functions) and at least partial support for the CRAM-MD5, EXTERNAL,
GSSAPI, ANONYMOUS, PLAIN, SECURID, DIGEST-MD5, LOGIN, NTLM and
The library is portable because it does not do network
communication by itself, but rather leaves it up to the calling
application. The library is flexible with regards to the
authorization infrastructure used, as it utilizes callbacks into
the application to decide whether an user is authorized or not.
GNU SASL is developed for the GNU/Linux system, but runs on over
20 platforms including most major Unix platforms and Windows, and
many kind of devices including iPAQ handhelds and S/390
GNU SASL is licensed under the GNU Public License.
The project page of the library is available at:
Here are the compressed sources:
Here are GPG detached signatures using key 0xB565716F:
Here are the MD5 checksums:
Noteworthy changes since the last release:
- Command line client can talk to SMTP servers with --smtp.
- DocBook manuals in XML, PDF, PostScript, ASCII and HTML formats
- Token parser in DIGEST-MD5 fixed, improve interoperability of
- Libgcrypt >= 1.1.42 is used if available (for CRAM-MD5 and
DIGEST-MD5). The previous libgcrypt API is no longer
- CRAM-MD5 and DIGEST-MD5 no longer require libgcrypt (but can
still use it). If libgcrypt 1.1.42 or later is not found, it uses a
minimalistic cryptographic library based on Nettle, from crypto/.
Currently only MD5 and HMAC-MD5 is needed, making a dependence on
- Listing supported server mechanisms with gsasl_server_mechlist
- Autoconf 2.59, Automake 1.8 beta, Libtool CVS used.
- Source code for each SASL mechanism moved to its own
sub-directory in lib/.
- The command line interface now uses getopt instead of argp. The
reason is portability, this also means we no longer use
- API and ABI modifications.
gsasl_hexdump: REMOVED. Never intended to be exported.
gsasl_client_step: DEPRECATED: use gsasl_step instead.
gsasl_server_step: DEPRECATED: use gsasl_step instead.
gsasl_client_step_base64: DEPRECATED: use gsasl_step64 instead.
gsasl_server_step_base64: DEPRECATED: use gsasl_step64 instead.
gsasl_client_finish: DEPRECATED: use gsasl_finish instead.
gsasl_server_finish: DEPRECATED: use gsasl_finish instead.
gsasl_client_ctx_get: DEPRECATED: use gsasl_ctx_get instead.
gsasl_server_ctx_get: DEPRECATED: use gsasl_ctx_get instead.
gsasl_client_application_data_get: DEPRECATED: use
gsasl_client_application_data_set: DEPRECATED: use
gsasl_server_application_data_get: DEPRECATED: use
gsasl_server_application_data_set: DEPRECATED: use
Gsasl_ctx: DEPRECATED: use Gsasl instead.
Gsasl_session_ctx: DEPRECATED: use Gsasl_session instead.
GSASL_CRYPTO_ERROR: ADD, replaces deprecated
GSASL_LIBGCRYPT_ERROR: DEPRECATED: use GSASL_CRYPTO_ERROR
GSASL_KERBEROS_V5_INTERNAL_ERROR: ADD, replaces deprecated
GSASL_SHISHI_ERROR: DEPRECATED: use
GNU cfs-el 0.5.0
cfs-el is a frontend for using CFS (Criptographic File System)
This is its fist stable version.
Please send bug reports to: