[jdev] tls + plain sasl not working

Matthew A. Miller linuxwolf at outer-planes.net
Thu Mar 23 06:58:10 CST 2006


Your server isn't seeing a NULL in the stream, it's seeing the 
base64-encoded version of NULL.  During SASL authentication, it should 
be decoding that string, and handling it fine.

Also, I'd like to point out that you should only send the authzid if you 
are acting on behalf of someone else (which, in XMPP-land, is pretty 
rare).  Without the authzid, it's:
<null>authcid<null>password

Properly base64-encoded, of course.

Adrian Adrian wrote:
> Thanks for the info, guys.
>
> Still I'm very puzzled by this :
> authzid<null>authcid<null>passwd
>
> I'm connecting to my server through an xml socket. Wen I put a null 
> character there, wouldn't the server think it is the end of  the xml 
> message ?
>
>
>
>
>
>
>
> */Norman Rasmussen <norman at rasmussen.co.za>/* wrote:
>
>     On 3/22/06, Adrian Adrian wrote:
>     > Good point.
>     > One more question: In which format should I send the base64
>     information ?
>
>     http://www.ietf.org/internet-drafts/draft-ietf-sasl-plain-08.txt
>
>     As Bilyk points out the format is : optional
>     authzid<null>authcid<null>passwd
>
>     --
>     - Norman Rasmussen
>     - Email: norman at rasmussen.co.za
>     - Home page: http://norman.rasmussen.co.za/
>
>
> ------------------------------------------------------------------------
> Yahoo! Messenger with Voice. Make PC-to-Phone Calls 
> <http://us.rd.yahoo.com/mail_us/taglines/postman1/*http://us.rd.yahoo.com/evt=39663/*http://voice.yahoo.com> 
> to the US (and 30+ countries) for 2¢/min or less. 

-- 
-  LW

"Got JABBER(R)?" <http://www.jabber.org/>

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 3543 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://mail.jabber.org/pipermail/jdev/attachments/20060323/9bfedf36/attachment-0002.bin>


More information about the JDev mailing list