[jadmin] Question about hash, token and sequence

Wilfredo I. Pachon Lopez wilfred_com at cun.edu.co
Wed Aug 24 17:08:19 CDT 2005


> Those are for the old zero-knowledge authentication, which is deprecated.

My Jabber system requieres this, how to disable?

The following is the transcript for my jabber log file, that corresponds to
C2S:


C2S : Wed Aug 24 16:42:23 2005 [notice] starting up
C2S : Wed Aug 24 16:42:23 2005 authreg_pgsql.c:483 SQL to create account:
INSERT INTO "authreg" ( "username", "realm" ) VALUES ( '%s', '%s' )
C2S : Wed Aug 24 16:42:23 2005 [info] process id is 5195, written to
/opt/jabber/var/jabberd/pid/c2s.pid
C2S : Wed Aug 24 16:42:23 2005 authreg_pgsql.c:484 SQL to query user
information: SELECT CRYPT(account_pwd) AS password FROM phpgw_accounts WHERE
account_lid = '%s' AND dominio = '%s'
C2S : Wed Aug 24 16:42:23 2005 [notice] initialised auth module 'pgsql'
C2S : Wed Aug 24 16:42:23 2005 authreg_pgsql.c:485 SQL to set password: UPDATE
"authreg" SET "password" = '%s' WHERE "username" = '%s' AND "realm" = '%s'
C2S : Wed Aug 24 16:42:23 2005 authreg_pgsql.c:486 SQL to set zero K: UPDATE
"authreg" SET "hash" = '%s', "token" = '%s', "sequence" = '%d'  WHERE
"username" = '%s' AND "realm" = '%s'
C2S : Wed Aug 24 16:42:23 2005 authreg_pgsql.c:487 SQL to delete account:
DELETE FROM "authreg" WHERE "username" = '%s' AND "realm" = '%s'
C2S : Wed Aug 24 16:42:23 2005 authreg_pgsql.c:506 pgsql connecting as
'jabberd2' to database 'groupware' on localhost:5432
C2S : sx (sasl.c:548) initialising sasl plugin
C2S : Wed Aug 24 16:42:23 2005 scod.c:40 creating new scod context
C2S : Wed Aug 24 16:42:23 2005 mech_anonymous.c:46 initialising ANONYMOUS
mechanism
C2S : Wed Aug 24 16:42:23 2005 scod.c:68 mech 'ANONYMOUS' initialised
C2S : Wed Aug 24 16:42:23 2005 mech_digest_md5.c:686 initialising DIGEST-MD5
mechanism
C2S : Wed Aug 24 16:42:23 2005 scod.c:68 mech 'DIGEST-MD5' initialised
C2S : Wed Aug 24 16:42:23 2005 mech_plain.c:101 initialising PLAIN mechanism
C2S : Wed Aug 24 16:42:23 2005 scod.c:68 mech 'PLAIN' initialised

...

C2S : Wed Aug 24 16:42:50 2005 c2s.c:43 reading from 7
C2S : Wed Aug 24 16:42:50 2005 c2s.c:97 read 115 bytes
C2S : sx (io.c:181) passed 115 read bytes
C2S : sx (chain.c:93) calling io read chain
C2S : sx (io.c:205) decoded read data (115 bytes): <stream:stream
to='cun.edu.co' xmlns='jabber:client'
xmlns:stream='http://etherx.jabber.org/streams' version='1.0'>
C2S : sx (server.c:118) stream request: to cun.edu.co from (null) version 1.0
C2S : sx (server.c:133) 7 state change from 0 to 1
C2S : sx (server.c:151) stream id is 8e4ec27xbmjpaybqx47kklsip2fqcchkrlz3o71z
C2S : sx (server.c:181) prepared stream response: <?xml
version='1.0'?><stream:stream xmlns:stream='http://etherx.jabber.org/streams'
xmlns='jabber:client' from='cun.edu.co' version='1.0'
id='8e4ec27xbmjpaybqx47kklsip2fqcchkrlz3o71z'>
C2S : sx (io.c:221) tag 7 event 1 data 0x0
C2S : Wed Aug 24 16:42:50 2005 c2s.c:38 want write
C2S : Wed Aug 24 16:42:50 2005 c2s.c:398 write action on fd 7
C2S : sx (io.c:293) 7 ready for writing
C2S : sx (io.c:251) encoding 184 bytes for writing: <?xml
version='1.0'?><stream:stream xmlns:stream='http://etherx.jabber.org/streams'
xmlns='jabber:client' from='cun.edu.co' version='1.0'
id='8e4ec27xbmjpaybqx47kklsip2fqcchkrlz3o71z'>
C2S : sx (chain.c:79) calling io write chain
C2S : sx (io.c:312) handing app 184 bytes to write
C2S : sx (io.c:313) tag 7 event 3 data 0x80a9510
C2S : Wed Aug 24 16:42:51 2005 [notice] [7] auth failed: username=wilfred_com,
resource=Gaim
C2S : Wed Aug 24 16:42:50 2005 c2s.c:104 writing to 7
C2S : Wed Aug 24 16:42:50 2005 c2s.c:108 184 bytes written
C2S : sx (server.c:29) stream established
C2S : sx (server.c:39) 7 state change from 1 to 3
C2S : sx (server.c:40) tag 7 event 4 data 0x0
C2S : sx (server.c:45) building features nad
C2S : sx (sasl.c:86) application didn't provide any mechanisms we can offer
C2S : Wed Aug 24 16:42:50 2005 bind.c:35 not auth'd, not offering resource
bind
C2S : sx (io.c:346) tag 7 event 0 data 0x0
C2S : Wed Aug 24 16:42:50 2005 c2s.c:33 want read
C2S : Wed Aug 24 16:42:50 2005 c2s.c:398 write action on fd 7
C2S : sx (io.c:293) 7 ready for writing
C2S : sx (io.c:251) encoding 66 bytes for writing: <stream:features
xmlns:stream='http://etherx.jabber.org/streams'/>
C2S : sx (chain.c:79) calling io write chain
C2S : sx (io.c:312) handing app 66 bytes to write
C2S : sx (io.c:313) tag 7 event 3 data 0x80a9510
C2S : Wed Aug 24 16:42:50 2005 c2s.c:104 writing to 7
C2S : Wed Aug 24 16:42:50 2005 c2s.c:108 66 bytes written
C2S : sx (io.c:346) tag 7 event 0 data 0x0
C2S : Wed Aug 24 16:42:50 2005 c2s.c:33 want read
C2S : Wed Aug 24 16:42:51 2005 c2s.c:384 read action on fd 7
C2S : sx (io.c:159) 7 ready for reading
C2S : sx (io.c:165) tag 7 event 2 data 0x80a9510
C2S : Wed Aug 24 16:42:51 2005 c2s.c:43 reading from 7
C2S : Wed Aug 24 16:42:51 2005 c2s.c:97 read 108 bytes
C2S : sx (io.c:181) passed 108 read bytes
C2S : sx (chain.c:93) calling io read chain
C2S : sx (io.c:205) decoded read data (108 bytes): <iq type='get'
id='gaim6d2119dd'><query
xmlns='jabber:iq:auth'><username>wilfred_com</username></query></iq>
C2S : sx (io.c:70) completed nad: <iq xmlns='jabber:client' id='gaim6d2119dd'
type='get'><query
xmlns='jabber:iq:auth'><username>wilfred_com</username></query></iq>
C2S : sx (chain.c:119) calling nad read chain
C2S : sx (io.c:124) tag 7 event 6 data 0x80a9540
C2S : Wed Aug 24 16:42:51 2005 authreg.c:749 auth get
C2S : Wed Aug 24 16:42:51 2005 authreg_pgsql.c:62 prepared sql: SELECT
CRYPT(account_pwd) AS password FROM phpgw_accounts WHERE account_lid =
'wilfred_com' AND dominio = 'cun.edu.co'
C2S : Wed Aug 24 16:42:51 2005 authreg_pgsql.c:62 prepared sql: SELECT
CRYPT(account_pwd) AS password FROM phpgw_accounts WHERE account_lid =
'wilfred_com' AND dominio = 'cun.edu.co'
C2S : Wed Aug 24 16:42:51 2005 authreg_pgsql.c:171 weird, required field
wasn't returned
C2S : sx (chain.c:106) calling nad write chain
C2S : sx (io.c:369) queueing for write: <iq xmlns='jabber:client'
id='gaim6d2119dd' type='result'><query
xmlns='jabber:iq:auth'><username>wilfred_com</username><resource/><password/><digest/></query></iq>
C2S : sx (io.c:392) tag 7 event 1 data 0x0
C2S : Wed Aug 24 16:42:51 2005 c2s.c:38 want write
C2S : Wed Aug 24 16:42:51 2005 c2s.c:398 write action on fd 7
C2S : sx (io.c:293) 7 ready for writing
C2S : sx (io.c:251) encoding 164 bytes for writing: <iq xmlns='jabber:client'
id='gaim6d2119dd' type='result'><query
xmlns='jabber:iq:auth'><username>wilfred_com</username><resource/><password/><digest/></query></iq>
C2S : sx (chain.c:79) calling io write chain
C2S : sx (io.c:312) handing app 164 bytes to write
C2S : sx (io.c:313) tag 7 event 3 data 0x80a96d8
C2S : Wed Aug 24 16:42:51 2005 c2s.c:104 writing to 7
C2S : Wed Aug 24 16:42:51 2005 c2s.c:108 164 bytes written
C2S : sx (io.c:346) tag 7 event 0 data 0x0
C2S : Wed Aug 24 16:42:51 2005 c2s.c:33 want read
C2S : sx (io.c:394) tag 7 event 0 data 0x0
C2S : Wed Aug 24 16:42:51 2005 c2s.c:33 want read
C2S : Wed Aug 24 16:42:51 2005 c2s.c:384 read action on fd 7
C2S : sx (io.c:159) 7 ready for reading

The line "Wed Aug 24 16:42:51 2005 authreg_pgsql.c:171 weird, required field
wasn't returned" say to me seeing in the authreg_pgsql.c file that the fields
of the subject are required.

Is there any other form to authenticate using a DB but no usign hash, token,
...?


Thanks

-- 

Att:

Wilfredo I. Pachón López
Coordinador Desarrollo de Software y Asesor en Software Libre
Dirección Nacional de Sistemas
CUN





More information about the JAdmin mailing list