saslauthd fails to authenticate YP/Kerberos users because it doesn't use PAM. It uses the 'shadow' mechanism instead. Shouldn't we switch to using pam by default? One line change to /etc/sysconfig/saslauthd