It appears that cyrus-sasl rimap authentication has a long-standing bug whereby it will loop forever if given a username or password which includes a double-quote. See the referenced mail list archive message for an explanation. Note that this is a remote-exploitable DoS vulnerability. Reproducible: Always Steps to Reproduce: /usr/sbin/testsaslauthd -u '"' -p password Actual Results: saslauthd hangs, taking 100% CPU.
Created attachment 285245 [details, diff] cyrus-sasl-2.1.23-rimap-fix
+*cyrus-sasl-2.1.23-r5 (02 Sep 2011) + + 02 Sep 2011; Eray Aslan <eras@gentoo.org> +cyrus-sasl-2.1.23-r5.ebuild, + +files/cyrus-sasl-2.1.23-rimap-loop.patch: + Patch for rimap quote loop - bug #381427 +