[Top] [All Lists]

Re: Proprietary or non-standard SMTP AUTH mechanisms

2012-01-12 04:28:41
On 11/01/2012 23:46, Murray S. Kucherawy wrote:

Are there any known proprietary or other non-standard SMTP AUTH mechanisms that deviate from the syntax specified un RFC4954?

Not that I know of.

For example, is there an unofficial SMTP AUTH mechanism that allows unencoded binary data in the challenges or responses? A vendor controlling both the client and the server could get away with something like that, but something standards-based analyzing that traffic might be confused by it.

All SASL exchange data in SMTP must be base64 encoded, so no unencoded binary data can ever occur if IETF standards are followed.