> > > > I think the actual security features list is dependant on the SASL > > implementation, and which mechs satisfy each security feature is defined > > in cyrus and dovecot sasl.
Ah. So you're saying that for each auth mechanism configured in the SASL implementation (dovecot in my case), the SASL implementation is sending Postfix a tuple which includes the mechanism name and which categories it fits into, rather than Postfix keeping a list of which mechanisms are in each category. Is that right? If so, then that's clear enough. Michael
