--1LKvkjL3sHcu1TtY Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable
> I'll read that as: Use the one built in the standered, not SASL as it is= =20 > not in any clients. So I ask, Anyone know how to interface with SASL=20 > password files? I am guessing they are based on Unix Password Files. If you're using Cyrus, you could call "saslpasswd", which would work. Of course, if the administrator reconfigures Cyrus to use some other data source, this won't work. > <message to=3D'receve-id' from=3D'send-id'> >=20 > fexable - Accept this code > hard line - elements not in correct order, dump line. By elements do you mean attributes? It does not matter what order attributes appear in XML, they all have the same semantic meaning. > >For backwards compatibility reasons, its not possible to enforce the use > >of SASL (and I doubt it ever will be). For guaranteed end-to-end > >security, its necessary to encrypt individual packets using GPG (or > >similar). > Well, not for everyone, but all server and clients that support SASL=20 > must use it with a minimum level of encription. And then make sure that= =20 > EVERYONE starts including SASL. It is very easy to include IFF (if=20 > and only if) you use the cyrus SASL code relesed by Carnegie Mellon=20 > University. One of SASL's strengths is that the administrator can configure it for their environment. IMO, an implementation shouldn't limit the mechanisms that can be used, or the configuration for those mechanisms (although it could certainly make recommendations ie by having a secure default configuration). That's the great thing about the Cyrus SASL library - I don't need to care how its been set up. If you want to pursue this further, I do strongly suggest raising it on the XMPP list - its the only place where anything can come from it. Rob. --=20 Robert Norris GPG: 1024D/FC18E6C2 Email+Jabber: [EMAIL PROTECTED] Web: http://cataclysm.cx/ --1LKvkjL3sHcu1TtY Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.1 (GNU/Linux) iD8DBQE+QFa8Wb13Z/wY5sIRAksZAJ4qUEzuK40rn4adnTPFm/rphaJzXwCeIPcf KvLFAcGBUQ2ZHnynJOsxuzY= =CtBa -----END PGP SIGNATURE----- --1LKvkjL3sHcu1TtY-- _______________________________________________ jdev mailing list [EMAIL PROTECTED] http://mailman.jabber.org/listinfo/jdev
