<html>
<head>
<meta content="text/html; charset=utf-8" http-equiv="Content-Type">
</head>
<body bgcolor="#FFFFFF" text="#000000">
<p>I just committed updates to the RFCs and I-Ds on index.html as
well as updating mechanisms.html<br>
</p>
<br>
<div class="moz-cite-prefix">On 11/06/2016 08:12 PM, Nicola Nye
wrote:<br>
</div>
<blockquote
cite="mid:1478481155.1943124.779316921.3412B390@webmail.messagingengine.com"
type="cite">
<title></title>
<div>Ken,<br>
</div>
<div><br>
</div>
<div>I'm converting the cyrus-sasl docs to sphinx/rst format so we
can make them visible online at cyrusimap.org.<br>
</div>
<div><br>
</div>
<div>Something which jumped out at me today was the list of
supported RFCs. Several of the drafts listed have subsequently
become full fledged RFCs of their own. Can you eyeball and let
me know what SASL supports? (just the draft, or the whole
kaboodle or is the entire list out of date?)<br>
</div>
<div><br>
</div>
<div>I suspect quite a lot of the existing docs in cyrus-sasl are
out of date, but I don't know enough to update them. I place
this on the agenda for the call today.<br>
</div>
<div><br>
</div>
<div>Cheers,<br>
</div>
<div><br>
</div>
<div> Nicola</div>
<div><br>
</div>
<div>* :rfc:`1321` - The MD5 Message-Digest Algorithm<br>
</div>
<div>* :rfc:`1939` - Post Office Protocol - Version 3
(APOP/sasl_checkapop)<br>
</div>
<div>* :rfc:`2104` - HMAC: Keyed-Hashing for Message
Authentication<br>
</div>
<div>* :rfc:`2195` - IMAP/POP AUTHorize Extention for Simple
Challenge/Response<br>
</div>
<div><br>
</div>
<div>* `draft-ietf-sasl-crammd5-xx <<a moz-do-not-send="true"
href="https://tools.ietf.org/html/draft-ietf-sasl-crammd5">https://tools.ietf.org/html/draft-ietf-sasl-crammd5</a>>`_
- The CRAM-MD5 SASL Mechanism (CRAM-MD5)<br>
</div>
<div>* :rfc:`2222` - Simple Authentication and Security Layer
(SASL) (KERBEROS_V4)<br>
</div>
<div><br>
</div>
<div><span class="highlight" style="background-color:#ffff00">*
`draft-ietf-sasl-rfc2222bis <</span><a
moz-do-not-send="true"
href="https://tools.ietf.org/html/draft-ietf-sasl-rfc2222bis-07"><span
class="highlight" style="background-color:#ffff00">https://tools.ietf.org/html/draft-ietf-sasl-rfc2222bis-07</span></a><span
class="highlight" style="background-color:#ffff00">>`_
Simple Authentication and Security Layer (SASL) (EXTERNAL) -
(which became :rfc:`4422` )</span><br>
</div>
<div>* :rfc:`2243` - OTP Extended Responses<br>
</div>
<div>* :rfc:`2245` - Anonymous SASL Mechanism<br>
</div>
<div><br>
</div>
<div><span class="highlight" style="background-color:#ffff00">*
`draft-ietf-sasl-anon <</span><a moz-do-not-send="true"
href="https://tools.ietf.org/html/draft-ietf-sasl-anon-05"><span
class="highlight" style="background-color:#ffff00">https://tools.ietf.org/html/draft-ietf-sasl-anon-05</span></a><span
class="highlight" style="background-color:#ffff00">>`_
Anonymous SASL Mechanism (ANONYMOUS) (became :rfc:`4505`)</span><br>
</div>
<div>* :rfc:`2289` - A One-Time Password System<br>
</div>
<div>* :rfc:`2444` - The One-Time-Password SASL Mechanism (OTP)<br>
</div>
<div>* :rfc:`2595` - Using TLS with IMAP, POP, and ACAP<br>
</div>
<div><br>
</div>
<div>* `draft-ietf-sasl-plain <<a moz-do-not-send="true"
href="https://tools.ietf.org/html/draft-ietf-sasl-plain">https://tools.ietf.org/html/draft-ietf-sasl-plain</a>>`_
Plain SASL Mechanism (PLAIN)<br>
</div>
<div>* :rfc:`2831` - Using Digest Authentication as a SASL
Mechanism<br>
</div>
<div><br>
</div>
<div>* `draft-ietf-sasl-rfc2831bis <<a moz-do-not-send="true"
href="https://tools.ietf.org/html/draft-ietf-sasl-rfc2831bis-08">https://tools.ietf.org/html/draft-ietf-sasl-rfc2831bis-08</a>>`_
- Using Digest Authentication as a SASL Mechanism (DIGEST-MD5)<br>
</div>
<div>* :rfc:`2945` - The SRP Authentication and Key Exchange
System<br>
</div>
<div>* :rfc:`3174` - US Secure Hash Algorithm 1 (SHA1)<br>
</div>
<div>* `draft-burdis-cat-srp-sasl <<a moz-do-not-send="true"
href="https://tools.ietf.org/html/draft-burdis-cat-srp-sasl-08">https://tools.ietf.org/html/draft-burdis-cat-srp-sasl-08</a>>`_
- Secure Remote Password SASL Mechanism (SRP)<br>
</div>
<div><span class="highlight" style="background-color:#ffff00">*
`draft-ietf-sasl-gssapi <</span><a moz-do-not-send="true"
href="https://tools.ietf.org/html/draft-ietf-sasl-gssapi"><span
class="highlight" style="background-color:#ffff00">https://tools.ietf.org/html/draft-ietf-sasl-gssapi</span></a><span
class="highlight" style="background-color:#ffff00">>`_ -
SASL GSSAPI Mechanisms (GSSAPI) (became :rfc:`4752`)</span><br>
</div>
<div>* `draft-ietf-sasl-saslprep <<a moz-do-not-send="true"
href="https://tools.ietf.org/html/draft-ietf-sasl-saslprep">https://tools.ietf.org/html/draft-ietf-sasl-saslprep</a>>`_
0 SASLprep: Stringprep profile for user names and passwords
(became :rfc:`4013`)<br>
</div>
<div>* `draft-murchison-sasl-login <<a moz-do-not-send="true"
href="https://tools.ietf.org/html/draft-murchison-sasl-login">https://tools.ietf.org/html/draft-murchison-sasl-login</a>>`_
- The LOGIN SASL Mechanism (LOGIN) -- *obsolete*<br>
</div>
<div>* `draft-newman-sasl-passdss <<a moz-do-not-send="true"
href="https://tools.ietf.org/html/draft-newman-sasl-passdss">https://tools.ietf.org/html/draft-newman-sasl-passdss</a>>`_
- DSS Secured Password Authentication Mechanism (PASSDSS-3DES-1)<br>
</div>
<div>* `draft-newman-sasl-c-api <<a moz-do-not-send="true"
href="https://tools.ietf.org/html/draft-newman-sasl-c-api">https://tools.ietf.org/html/draft-newman-sasl-c-api</a>>`_
- The SASL C API (very rough draft)<br>
</div>
</blockquote>
<br>
<pre class="moz-signature" cols="72">--
Kenneth Murchison
Principal Systems Software Engineer
Carnegie Mellon University
</pre>
</body>
</html>