[JDEV] Regarding Zero Knowledge Authentication:

Jens Alfke jens at mac.com
Mon Apr 16 11:56:28 CDT 2001


On Monday, April 16, 2001, at 11:21 AM, Girish wrote:

>       Hey is there any client available for Zero Knowledge 
> Authentication.

Didn't you ask this question just last week, and the response was that 
no one knew much about this area? I don't think we've learned anything 
over the weekend. :-)

> Since when i written my client and followed the procedure of sending 
> hash
> value to the server the server doesn't responds.I observed that when we 
> send
> the value with only characters and numbers as "girish11" the server 
> responds
> properly but when i send some encrypted value like "%%??g" server 
> doesn't
> responds.

The hash has to be encoded into hex when sent to the server. Also, it 
turns out you have to use SHA-1 and not SHA; the two are apparently 
different. I've gotten it working, and my client developer's cheat sheet 
now covers this:

http://homepage.mac.com/jens/Jabber/JabberClientCheatSheet.html

—Jens
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: text/enriched
Size: 1273 bytes
Desc: not available
URL: <http://mail.jabber.org/pipermail/jdev/attachments/20010416/ec8ac239/attachment-0002.bin>


More information about the JDev mailing list