[jdev] When to apply the SASLprep stringprep profile?
Tobias Markmann
tmarkmann at googlemail.com
Sun Nov 30 11:49:20 CST 2008
Hi,
when do i have to apply SASLprep and on what? The RFC,
http://www.ietf.org/rfc/rfc4013.txt , just says it's applied on usernames
and passwords. So I'm asking:
1. Do I need to apply SASLprep as server for all possible SASL mechanism
or just Digest-MD5?
2. Does everything still work if clients doen't apply SASLprep profile at
all?
3. At what point to do SASLprep on username and password? I mean do I use
the prepped string for response string calculation or the non-prepped?
Cheers,
Tobias
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.jabber.org/jdev/attachments/20081130/fe228e64/attachment-0003.htm>
More information about the JDev
mailing list