Ben Collins-Sussman wrote:
> On Nov 25, 2007 10:12 AM, Vlad Georgescu <vgeorgescu@gmail.com> wrote:
>
>> It depends on the mechanisms, which are dynamically loaded at runtime.
>> DIGEST-MD5 doesn't need any external libraries. SRP requires OpensSSL's
>> libcrypto. Also, OTP and NTLM require libcrypto even though they don't
>> do protocol encryption.
>
> Pardon my ignorance, but how does a plugin like DIGEST-MD5 perform
> protocol encryption without depending on libcrypto? Doesn't all
> legitimate encryption somehow depend on *some* kind of public-key
> cryptography like openssl or pgp?
The client and the server have a shared secret - the user's password. I
guess they can use a symmetric key based on that secret.
>
> In any case, I'm unable to test your example right now. I've built
> trunk against sasl on my mac, but I can't even create a password db.
>
> $ sudo /usr/local/sbin/saslpasswd2 -c -u Ben_SASL_Realm sussman
> Password:
> Again (for verification):
> Bus error
>
> ...
>
> (gdb) where
> #0 0x00211f80 in dyld_stub_getaddrinfo ()
> #1 0x00000001 in ?? ()
> #2 0x00212040 in dyld_stub_getaddrinfo ()
> #3 0x00059900 in server_done () at server.c:424
> #4 0x00055ee4 in sasl_done () at common.c:648
> #5 0x000029af in main (argc=5, argv=0xbffffb28) at saslpasswd.c:451
>
Sorry, I've no idea what causes that crash.
--
Vlad
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sun Nov 25 17:28:05 2007