Am 03.01.2009 um 14:31 schrieb Tomasz Sterna:
Dnia 2009-01-03, sob o godzinie 10:47 +0100, Andreas Hofmeister pisze:
My suspicion is that both mechanisms trash each others idea of the
authentication realm, but that is not very deeply founded.
Any idea what to try or look at next ?
1. Compile jabberd with debugging, then run c2s -D and look for
signs of
the problem.
2. Look at the decoded SASL exchange (you may find it in debug
messages)
for incompatibilities.
Ok, I logged an attempt with GSSAPI only and one with GSSAPI + Digest-
MD5 enabled.
In the GSSAPI only case, Adium uses GSSAPI only which succeeds.
In the second case, Adium first tries to authenticate using Digest-
MD5 and as it has no password, this first attempt fails. It then
tries GSSAPI immediately without reseting the connection, but
terminates the connection the first challenge.
When I compare the successful GSSAPI attempt with the failing one,
both look quite similar except that in the failing case the first
challenge is 272 instead of 276 Bytes.
Ciao
Andi
--
To unsubscribe send a mail to [email protected]
