[ietf-nntp] Re: SASL capability
Ken Murchison
ken at oceana.com
Wed May 26 11:31:55 PDT 2004
Russ Allbery wrote:
> Ken Murchison <ken at oceana.com> writes:
>
>
>>Question: What do we do if a server only supports PLAIN and EXTERNAL
>>and a client does LIST EXTENSIONS prior to STARTTLS? Do we advertise
>>just "AUTHINFO" or "AUTHINFO SASL:" or ???
>
>
> I think we just advertise AUTHINFO.
OK, so SASL: is only advertised if there are mechs available.
> Why would EXTERNAL require TLS, though?
Sorry for the confusion, EXTERNAL doesn't *require* TLS. It might be
available because of some OOB info, via IPsec info, or in this case, a
TLS certificate.
--
Kenneth Murchison Oceana Matrix Ltd.
Software Engineer 21 Princeton Place
716-662-8973 x26 Orchard Park, NY 14127
--PGP Public Key-- http://www.oceana.com/~ken/ksm.pgp
More information about the ietf-nntp
mailing list