[ejabberd] Re: Can't mix XMPP and non-SASL auth

Peter Saint-Andre stpeter at jabber.org
Thu Nov 11 21:15:56 MSK 2004


In article <m2mzxoe5tt.fsf at zemdatav.local>,
 Magnus Henoch <mange at freemail.hu> wrote:

> Peter Saint-Andre <stpeter at jabber.org> writes:
> 
> > And a client that doesn't do SASL should not say that it supports XMPP 
> > 1.0, either.
> 
> Hm, I guess that's right.  But, if SASL is required for XMPP
> compliance, and XMPP is required for advertising stream features,
> what's the point of having a stream feature for non-SASL
> authentication?

Maybe SASL fails for some reason (bad implementations) and the parties 
need to fall back on the jabber:iq:auth protocol. Also I suppose that on 
certain platforms it might be possible to do TLS but not SASL.

/psa



More information about the ejabberd mailing list