imap impersonate
Michael Menge
michael.menge at zdv.uni-tuebingen.de
Thu Jan 19 07:14:13 EST 2017
Quoting Gabriele Bulfon <gbulfon at sonicle.com>:
> Thanks,
> my imapd.conf has already :
> admins: sonicle
> sasl_mech_list: plain
> if I try an imap session with:
> A01 AUTHENTICATE PLAIN
> +
> xxxxxxxxxxxxxxx
> where xxxxxxx comes from 'echo -en "\0sonicle\0pass" | base64' , I
> get authenticated as sonicle.
> Now, how do I switch to the desired user?
> Once I understand how to do it via imap protocol, I need to
> replicate it in java code through:
> store.connect(host,143,user,pass);
> Thanks in advance!
> Gabriele
Quoting from https://tools.ietf.org/html/rfc4616
> 2. PLAIN SASL Mechanism
>
> The mechanism consists of a single message, a string of [UTF-8]
> encoded [Unicode] characters, from the client to the server. The
> client presents the authorization identity (identity to act as),
> followed by a NUL (U+0000) character, followed by the authentication
> identity (identity whose password will be used), followed by a NUL
> (U+0000) character, followed by the clear-text password. As with
> other SASL mechanisms, the client does not provide an authorization
> identity when it wishes the server to derive an identity from the
> credentials and use that as the authorization identity.
so it is UserID\0AdminID\0AdminPass
--------------------------------------------------------------------------------
M.Menge Tel.: (49) 7071/29-70316
Universität Tübingen Fax.: (49) 7071/29-5912
Zentrum für Datenverarbeitung mail:
michael.menge at zdv.uni-tuebingen.de
Wächterstraße 76
72074 Tübingen
More information about the Info-cyrus
mailing list