ietf-nntp NNTP AUTH draft update
Andrew Gierth
andrew at erlenstar.demon.co.uk
Tue Nov 9 14:56:29 PST 1999
>>>>> "Chris" == Chris Newman <chris.newman at INNOSOFT.COM> writes:
Chris> Compliant clients MUST issue "LIST EXTENSIONS" prior to using
Chris> "AUTHINFO".
This still leaves the problem of existing noncompliant clients that
issue LIST EXTENSIONS anyway.
Chris> If the "LIST EXTENSIONS" command fails, clients MAY attempt to
Chris> use "AUTHINFO USER"/"AUTHINFO PASS" but should be aware that
Chris> the server is likely to use x8x response codes in that case.
More importantly, they should be aware that the server is likely to
give a 480 response to signal 'authentication required for command'.
It is of course also possible that the client will get a 480 response
to the LIST EXTENSIONS itself....
Obviously a compliant server will have to allow LIST EXTENSIONS even
if the client has not yet authenticated... this is a complication,
albeit a very minor one, as the other forms of LIST command will
generally be restricted to authenticated clients.
--
Andrew.
More information about the ietf-nntp
mailing list