ietf-smtp
[Top] [All Lists]

Re: CRAM - MD5

2001-06-26 00:35:07

Hi,

For example: I am using Eudora as an email client & gave pop server name
for getting mails, smtp server name for sending mails. For example pop
server
is pop3.mail.yahoo.com, smtp.mail.yahoo.com. If set an option like "use
authentication mechanisam while logging." assume that client(eudora) &
server (smtp.yahoo)
supports that authentication mechanisam.
1. then How can server & client maintain shared secret?
2. Is it some constat string understood by client & server ?
3. if somebody implements new email client which supports those
    auth mechanisams, How it will know the shared secret? how it will
connect to that server?

thanks,
- Koti
Off: 040 6513274 Extn: 8842
----------------------------------------------------------------
When one door of happiness closes, another opens; but often we look so long
at the closed door
that we do not see the one, which has opened for us. - Hellen Keller.

----- Original Message -----
From: "John C Klensin" <klensin(_at_)jck(_dot_)com>
To: "Koti" <theearth1947(_at_)yahoo(_dot_)com>
Cc: <ietf-smtp(_at_)imc(_dot_)org>
Sent: Monday, June 25, 2001 10:26 PM
Subject: Re: CRAM - MD5





--On Monday, 25 June, 2001 18:22 +0530 Koti
<theearth1947(_at_)yahoo(_dot_)com> wrote:

Ref: CRAM-MD5, challenge reply authentication mechanisam RFC
2195.

Hi,

1. How client & server maintain shared secret?

Any way they like.  This is deliberately not specified in the
standard.

   john


_________________________________________________________
Do You Yahoo!?
Get your free @yahoo.com address at http://mail.yahoo.com


<Prev in Thread] Current Thread [Next in Thread>