On 05/10/2017 03:09 PM, Fritz Elfert wrote:
On 10.05.2017 18:45, Ken Murchison wrote: [...]***It would be interesting to know, what the original author of that suspicious line in httpd.c had intended.***Setting maxbufsize to zero disables integrity and security protection since no HTTP client that I found uses qop=auth-intWhich cyrus-sasl version did you use?
I use SASL from git on my machines. -- Kenneth Murchison Principal Systems Software Engineer Carnegie Mellon University
