[jboss-dev-forums] [Design of Security on JBoss] - Re: SRP and SASL

Friday, 19 October 2007

&quot;scott.stark(a)jboss.org&quot; wrote : But can't you pass in the verifier as the
"password'?

You could.  That would be kind of ugly though.  PasswordCallback sends in a char[];
you'd have to send in the verifier, salt, N, and generater values all encoded in the
password somehow.

&quot;scott.stark(a)jboss.org&quot; wrote : I guess I would have to see what the current
mapping of srp to sasl is. Is it checked in somewhere?

I hadn't bothered checking it in because it doesn't actually *work* yet.  But on
the other hand, that hasn't stopped me before, so...

https://svn.jboss.org/repos/sandbox/david.lloyd/remoting3/core-proto/impl...

View the original post :
http://www.jboss.com/index.html?module=bb&op=viewtopic&p=4096984#...

Reply to the post :
http://www.jboss.com/index.html?module=bb&op=posting&mode=reply&a...

2026

2025

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

[jboss-dev-forums] [Design of Security on JBoss] - Re: SRP and SASL