[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Re: sasl question

From: Vlad Georgescu <vgeorgescu_at_gmail.com>
Date: 2007-11-25 17:27:48 CET

Ben Collins-Sussman wrote:
> On Nov 25, 2007 10:12 AM, Vlad Georgescu <vgeorgescu@gmail.com> wrote:
>
>> It depends on the mechanisms, which are dynamically loaded at runtime.
>> DIGEST-MD5 doesn't need any external libraries. SRP requires OpensSSL's
>> libcrypto. Also, OTP and NTLM require libcrypto even though they don't
>> do protocol encryption.
>
> Pardon my ignorance, but how does a plugin like DIGEST-MD5 perform
> protocol encryption without depending on libcrypto? Doesn't all
> legitimate encryption somehow depend on *some* kind of public-key
> cryptography like openssl or pgp?

The client and the server have a shared secret - the user's password. I
guess they can use a symmetric key based on that secret.

>
> In any case, I'm unable to test your example right now. I've built
> trunk against sasl on my mac, but I can't even create a password db.
>
> $ sudo /usr/local/sbin/saslpasswd2 -c -u Ben_SASL_Realm sussman
> Password:
> Again (for verification):
> Bus error
>
> ...
>
> (gdb) where
> #0 0x00211f80 in dyld_stub_getaddrinfo ()
> #1 0x00000001 in ?? ()
> #2 0x00212040 in dyld_stub_getaddrinfo ()
> #3 0x00059900 in server_done () at server.c:424
> #4 0x00055ee4 in sasl_done () at common.c:648
> #5 0x000029af in main (argc=5, argv=0xbffffb28) at saslpasswd.c:451
>

Sorry, I've no idea what causes that crash.

-- 
Vlad
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@subversion.tigris.org
For additional commands, e-mail: dev-help@subversion.tigris.org
Received on Sun Nov 25 17:28:05 2007

This is an archived mail posted to the Subversion Dev mailing list.