On 12/9/05 7:25, Graham Barr <[EMAIL PROTECTED]> wrote: > On Sun, September 11, 2005 10:40 am, Chris Ridd wrote: >> On 11/9/05 4:32, Peter Marschall <[EMAIL PROTECTED]> wrote: >> >>> The selection of the mech used for authentication does not happen in the >>> client (i.e. Authen::SASL does not decide) >>> The mach gets selected when the connection is made to the server >>> and then the server chooses the mech (AFAIK). >> >> The client offers the server a list of mechanisms though, and the server >> decides which one it can use (if any!) > > Thats not quite right. For LDAP the root DSE contains and attibute > supportedSASLMechanisms which has a list that the client has to > choose from.
Yeah they *ought* to do that, but the client's free to use just a subset of that list, or even to try their luck with something not on the list :-) Cheers, Chris
