This is almost but not precisely accurate. Prior to 4.1-2, the XDBC server could understand only basic authentication, so XCC clients prior to 4.1-2 pre-emptively sent basic authentication. Newer clients will make a request first, and respond appropriately to a challenge from the server for the method of authentication it prefers. If digest is enabled, the server will request it. So with an older client, basic credentials will be sent (in the clear) to the server, regardless of which type of authentication is enabled there. If the server allows basic authentication (basic or digestbasic), the request will succeed if the credentials are valid.
It is best to configure servers to require digest authentication, unless backwards compatibility with older clients is required. On Mar 25, 2010, at 2:02 PM, Andrew Welch wrote: The difference is "digestbasic" tries digest first, then falls back to basic... On 25 March 2010 20:48, Paul M <[email protected]<mailto:[email protected]>> wrote: I created an XCC server. The authentication was digest. I attempted to use XCC uri with default password. It failed. I changed the authentication to digestbasic, XCC uri with default password succeeded. Difference between the two? _______________________________________________ General mailing list [email protected]<mailto:[email protected]> http://xqzone.com/mailman/listinfo/general -- Andrew Welch http://andrewjwelch.com<http://andrewjwelch.com/> Kernow: http://kernowforsaxon.sf.net/ _______________________________________________ General mailing list [email protected]<mailto:[email protected]> http://xqzone.com/mailman/listinfo/general
_______________________________________________ General mailing list [email protected] http://xqzone.com/mailman/listinfo/general
