I emerged cyrus-sasl-2.1.17.ebuild last night, in an attempt to get a functional cyrus-sasl install.

(aside: I had previously installed cyrus-sasl-2.1.14, and rimap in this ebuild no longer works correctly with the new /etc/services that's been released.  Any chance of the fix in the 2.1.17 ebuild being backported?)

I am using saslauthd with rimap as the authentication mechanism.  My imap user names are all of the form "user@domain.org", the user's email address.

This works fine under 2.1.14, but under 2.1.17, the "domain name" part of the user id is split off into the "realm" value:

Feb 20 06:46:38 ghostwheel saslauthd[6831]: do_auth         : auth failure: [user=benjamin.cressey] [service=smtp] [realm=koden.net] [mech=rimap] [reason=remote server rejected your credentials]

In this case the "user" field should be benjamin.cressey@koden.net.  Using just the first part causes authentication to fail.  The realm should probably remain my mail server, but I am not sure that's particularly important.



Reproducible: Always
Steps to Reproduce:
1. Configure saslauthd to use rimap.
2. Create an imap user with a username of the form "user@domain.com"
3. Attempt to authenticate to SASL.  (my MUA is Outlook Express, but I could also reproduce the problem by connecting directly to my MTA and supplying the credentials from there.)

Actual Results:  
SASL authentication fails even when using the correct password.

Expected Results:  
SASL authentication should have succeeded.

MTA: postfix