Two questions about the random challenge string that the server
sends (after the client sends "login -<crypt> -<username>"):
1) It is *not* encrypted, correct? So basically the client just
reads from the socket, md5()'s it, encrypts and writes it back.
2) Is it a random length too? I ask because I'm testing my class
and I always seem to get strings of different lengths ... although
at one point I thought I was getting strings of a fixed length.
__________________________________________________________________
Colin Viebrock easyDNS Technologies
Co-Founder control your domain
http://www.easyDNS.com
