[NNTP] Spaces in usernames and passwords

Ken Murchison ken at oceana.com
Tue Sep 7 07:06:08 PDT 2004


Clive D.W. Feather wrote:

> Ken Murchison said:
> 
>>I'm fine with this as well.  I'll also propose this as a possible 
>>simpler and less-wordy alternative:
>>
>>
>>username = 1*(user-pass-char)
>>password = 1*(user-pass-char)
>>user-pass-char = P-CHAR
> 
> 
> The parentheses aren't needed.
> 
> 
>>Note: A server implementation MAY parse AUTHINFO USER and AUTHINFO PASS 
>>specially as to allow white space to be used within the username or 
>>password.  Such implementations typically treat everything between the 
>>first whitespace character following "USER"/"PASS" and EOL as the 
>>username/password.
> 
> 
> Not EOL, because that includes trailing white space. Say CRLF instead.

Right.  Good catch.


> 
>>In this case, "user-pass-char" is extended as such:
>>
>>user-pass-char =/ SP / TAB
> 
> 
> Better, I think, is:
> 
>     Such implementations accept the additional syntax:
> 
>         user-pass-char =/ SP / TAB
> 
>     (note that this makes the overall grammar ambiguous and also makes
>     these commands incompatible with "x-command").

OK.  I'll push a -03 draft out today.


-- 
Kenneth Murchison     Oceana Matrix Ltd.
Software Engineer     21 Princeton Place
716-662-8973 x26      Orchard Park, NY 14127
--PGP Public Key--    http://www.oceana.com/~ken/ksm.pgp



More information about the ietf-nntp mailing list