IETF Logo Mail Archive

Re: Fwd: "POP3 SASL Authentication Mechanism" submitted for publication

Frank Ellermann <nobody@xyzzy.claranet.de> Mon, 15 January 2007 19:18 UTC

Received: from balder-227.proper.com (localhost [127.0.0.1]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id l0FJIOr7065834 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Mon, 15 Jan 2007 12:18:24 -0700 (MST) (envelope-from owner-ietf-pop3ext@mail.imc.org)
Received: (from majordom@localhost) by balder-227.proper.com (8.13.5/8.13.5/Submit) id l0FJIOh5065833; Mon, 15 Jan 2007 12:18:24 -0700 (MST) (envelope-from owner-ietf-pop3ext@mail.imc.org)
X-Authentication-Warning: balder-227.proper.com: majordom set sender to owner-ietf-pop3ext@mail.imc.org using -f
Received: from ciao.gmane.org (main.gmane.org [80.91.229.2]) by balder-227.proper.com (8.13.5/8.13.5) with ESMTP id l0FJIHt1065823 (version=TLSv1/SSLv3 cipher=AES256-SHA bits=256 verify=NO) for <ietf-pop3ext@imc.org>; Mon, 15 Jan 2007 12:18:20 -0700 (MST) (envelope-from gip-ietf-pop3ext-53@gmane.org)
Received: from list by ciao.gmane.org with local (Exim 4.43) id 1H6XLE-0005iY-Eg for ietf-pop3ext@imc.org; Mon, 15 Jan 2007 20:18:00 +0100
Received: from 212.82.251.228 ([212.82.251.228]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for <ietf-pop3ext@imc.org>; Mon, 15 Jan 2007 20:18:00 +0100
Received: from nobody by 212.82.251.228 with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for <ietf-pop3ext@imc.org>; Mon, 15 Jan 2007 20:18:00 +0100
X-Injected-Via-Gmane: http://gmane.org/
To: ietf-pop3ext@imc.org
From: Frank Ellermann <nobody@xyzzy.claranet.de>
Subject: Re: Fwd: "POP3 SASL Authentication Mechanism" submitted for publication
Date: Mon, 15 Jan 2007 20:17:31 +0100
Organization: <URL:http://purl.net/xyzzy>
Lines: 27
Message-ID: <45ABD34B.13E9@xyzzy.claranet.de>
References: <FDF696C1-7407-4C60-8D8F-04CC492BE435@osafoundation.org> <1E59CC0D-7022-4400-BA48-D9D7B427ABEF@commerce.net> <45A9DFA8.68E4@xyzzy.claranet.de> <45AB0238.2050906@santronics.com>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
X-Complaints-To: usenet@sea.gmane.org
X-Gmane-NNTP-Posting-Host: 212.82.251.228
X-Mailer: Mozilla 3.0 (OS/2; U)
Cc: ietf-sasl@imc.org
Sender: owner-ietf-pop3ext@mail.imc.org
Precedence: bulk
List-Archive: <http://www.imc.org/ietf-pop3ext/mail-archive/>
List-ID: <ietf-pop3ext.imc.org>
List-Unsubscribe: <mailto:ietf-pop3ext-request@imc.org?body=unsubscribe>

Hector Santos wrote:
 
> AUTH
> +OK list of supported mechanisms follows
> CRAM-MD4
> DIGEST-MD5
> LOGIN
> PLAIN
> .

Hmph, I'd say you'd get the list of SASL mechanisms (+ STLS and 
USER where available) with CAPA, not with a bare AUTH, and it's
CRAM-MD5, not CRAM-MD4.

POP3 and SASL have no "LOGIN" mechanism, if that's USER + PASS the
capability is USER.  At least it's clear that publishing a 1734bis
is a good idea... ;-)   Minus the mandatory DIGEST-MD5 of course.

> Now, have I ever come across a client using DIGEST-MD5?  No, not
> that I recall.

Thanks for info.  The statement "to the best of my knowledge, the 
majority of POP3 implementations support this extension already"
was apparently not about DIGEST-MD5, but more generally about SASL.

Frank

v2.23.0 | Report a Bug | By Email