Sybase defines a security mechanism as external software that provides security services for a connection. UNIX platforms can use the security mechanism provided by Kerberos security.
You specify the security mechanisms that a server supports in interfaces or a directory service. The values for interfaces or directory service’s secmech line/attribute must correspond to the strings associated with object identifiers defined in the user’s objectid.dat file, under the [secmech] section:
The optional secmech line in an interfaces entry specifies the security mechanisms that a server supports.
The optional secmech attribute in a directory service entry describes the security mechanisms that a server supports.
When a client gets the server’s address, it can verify that the server supports the security mechanism that the client is using:
If there is a secmech line or attribute and security mechanisms are listed, then only those security mechanisms are allowed.
If there is no secmech line or attribute, then all security mechanisms are allowed.
If there is a secmech line or attribute but no security mechanisms are listed, then the server does not support any security mechanisms.
