I'm happy to announce that GNU MailUtils imapd will use SCRAM-SHA-1 (the next generation SASL mechanism) without any code changes if compiled with --with-gsasl and the system's GNU SASL is recent enough to support SCRAM-SHA-1.
Example session (use password 'pencil'): j...@mocca:~/src/gsasl master$ src/gsasl --connect nubb.josefsson.org -a user Trying `nubb.josefsson.org'... * OK IMAP4rev1 . CAPABILITY * CAPABILITY IMAP4rev1 NAMESPACE ID IDLE LITERAL+ UNSELECT AUTH=ANONYMOUS AUTH=EXTERNAL AUTH=LOGIN AUTH=PLAIN AUTH=SECURID AUTH=DIGEST-MD5 AUTH=CRAM-MD5 AUTH=SCRAM-SHA-1 . OK CAPABILITY Completed . CAPABILITY * CAPABILITY IMAP4rev1 NAMESPACE ID IDLE LITERAL+ UNSELECT AUTH=ANONYMOUS AUTH=EXTERNAL AUTH=LOGIN AUTH=PLAIN AUTH=SECURID AUTH=DIGEST-MD5 AUTH=CRAM-MD5 AUTH=SCRAM-SHA-1 . OK CAPABILITY Completed . AUTHENTICATE SCRAM-SHA-1 + biwsbj11c2VyLHI9Y3BsU0ZOV2hzYWI2NG52ZWdHYTdvNy9Z + cj1jcGxTRk5XaHNhYjY0bnZlZ0dhN283L1loTTF1a2h4ZlFPZWgrT3krOXcscz1CYUc2UDRmRGpuNDhHcFh0LGk9NDA5Ng== Enter password: Yz1iaXdzLHI9Y3BsU0ZOV2hzYWI2NG52ZWdHYTdvNy9ZaE0xdWtoeGZRT2VoK095Kzl3LHA9aXF2R212Q0YzRE1jYTMweUFWZUlKYTBDN3M4PQ== + dj1zTmdERmFnd3dDVTVwL0RuTXhpTmxCdUg1Z1U9 . OK AUTHENTICATE SCRAM-SHA-1 authentication successful Client authentication finished (server trusted)... Enter application data (EOF to finish): . capability * CAPABILITY IMAP4rev1 NAMESPACE ID IDLE LITERAL+ UNSELECT . OK CAPABILITY Completed . logout * BYE Session terminating. . OK LOGOUT Completed Session finished... . LOGOUT j...@mocca:~/src/gsasl master$ /Simon _______________________________________________ Bug-mailutils mailing list [email protected] http://lists.gnu.org/mailman/listinfo/bug-mailutils
