imap impersonate

Michael Menge michael.menge at zdv.uni-tuebingen.de
Thu Jan 19 07:14:13 EST 2017


Quoting Gabriele Bulfon <gbulfon at sonicle.com>:

> Thanks,
> my imapd.conf has already :
> admins: sonicle
> sasl_mech_list: plain
> if I try an imap session with:
> A01 AUTHENTICATE PLAIN
> +
> xxxxxxxxxxxxxxx
> where xxxxxxx comes from 'echo -en "\0sonicle\0pass" | base64' , I  
> get authenticated as sonicle.
> Now, how do I switch to the desired user?
> Once I understand how to do it via imap protocol, I need to  
> replicate it in java code through:
> store.connect(host,143,user,pass);
> Thanks in advance!
> Gabriele

Quoting from https://tools.ietf.org/html/rfc4616

> 2.  PLAIN SASL Mechanism
>
>   The mechanism consists of a single message, a string of [UTF-8]
>   encoded [Unicode] characters, from the client to the server.  The
>   client presents the authorization identity (identity to act as),
>   followed by a NUL (U+0000) character, followed by the authentication
>   identity (identity whose password will be used), followed by a NUL
>   (U+0000) character, followed by the clear-text password.  As with
>   other SASL mechanisms, the client does not provide an authorization
>   identity when it wishes the server to derive an identity from the
>   credentials and use that as the authorization identity.

so it is UserID\0AdminID\0AdminPass





--------------------------------------------------------------------------------
M.Menge                                Tel.: (49) 7071/29-70316
Universität Tübingen                   Fax.: (49) 7071/29-5912
Zentrum für Datenverarbeitung          mail:  
michael.menge at zdv.uni-tuebingen.de
Wächterstraße 76
72074 Tübingen



More information about the Info-cyrus mailing list