[JDEV] SASL, deployment and coding

Matthew Beacher SyOp at Reigm.Com
Tue Feb 4 15:42:54 CST 2003

	I am writting an open source Jabber Server ( 
http://sourceforge.net/projects/rjserver/ ) and I writting to see if 
anyone can answer a few questions about how the Jabber Protocol is 
sposed to work with SASL and how more of the ins and outs of the 
protocol work.

1) Can the User Registration that is built into SASL be used to join a 
Jabber Server or must the Jabber Registration system (as stated in 
http://www.jabber.org/protocol/registration.html ) be used? I ask 
because SASL has built in registration and authentication, and I am 
unsure how to tap into the SASL password files.

2) How felxable should a server be in the order of receved elements? 
Should a server be hard line on receving elements in the order listed, 
or should it be more open in the ordering, so long as all required 
elements are there?

3) Has anyone else thought that all servers should require SASL 
encription level of at least 40 (read 40 bit encription), and that with 
this there should be an addition to Jabber:Server:DialBack and SASL so 
that Server to server comunications are encripted, because what is the 
good of a message that is only encripted some of the time.

Reigm's Advanced Jabber Server (RAJ)

More information about the JDev mailing list