On 20/12/2011 06:57, Alex Peshkoff wrote: > connect: client's public key, login and database name => server > accept: server's public key and salt => client > attach: client's proof => server > response: success if client's proof == server's proof > > What I would like to know is that if there is a way to configure the client to know if the server is a trusted one, cause if you only use generated keys you don't prevent man in the middle attacks.
Adriano ------------------------------------------------------------------------------ Write once. Port to many. Get the SDK and tools to simplify cross-platform app development. Create new or port existing apps to sell to consumers worldwide. Explore the Intel AppUpSM program developer opportunity. appdeveloper.intel.com/join http://p.sf.net/sfu/intel-appdev Firebird-Devel mailing list, web interface at https://lists.sourceforge.net/lists/listinfo/firebird-devel
