imap impersonate

Gabriele Bulfon gbulfon at sonicle.com
Thu Jan 19 08:07:25 EST 2017 

wow...I just found that in Java is already implemented:
Properties props=System.getProperties();
props.setProperty("mail.imap.sasl.authorizationid","targetmailbox at domain.tld" );
Session session=Session.getInstance(props);
Store store=session.getStore("imap");
store.connect("host",143,"adminuser","adminpass");
there you go with the session on the targetmailbox ;)
Thanks a lot!
Gabriele
----------------------------------------------------------------------------------------
Sonicle S.r.l.
:
http://www.sonicle.com
Music:
http://www.gabrielebulfon.com
Quantum Mechanics :
http://www.cdbaby.com/cd/gabrielebulfon
----------------------------------------------------------------------------------
Da: Michael Menge
A: Gabriele Bulfon
Cc: info-cyrus at lists.andrew.cmu.edu
Data: 19 gennaio 2017 13.14.13 CET
Oggetto: Re: imap impersonate
Quoting Gabriele Bulfon
:
Thanks,
my imapd.conf has already :
admins: sonicle
sasl_mech_list: plain
if I try an imap session with:
A01 AUTHENTICATE PLAIN
+
xxxxxxxxxxxxxxx
where xxxxxxx comes from 'echo -en "\0sonicle\0pass" | base64' , I
get authenticated as sonicle.
Now, how do I switch to the desired user?
Once I understand how to do it via imap protocol, I need to
replicate it in java code through:
store.connect(host,143,user,pass);
Thanks in advance!
Gabriele
Quoting from https://tools.ietf.org/html/rfc4616
2.  PLAIN SASL Mechanism
The mechanism consists of a single message, a string of [UTF-8]
encoded [Unicode] characters, from the client to the server.  The
client presents the authorization identity (identity to act as),
followed by a NUL (U+0000) character, followed by the authentication
identity (identity whose password will be used), followed by a NUL
(U+0000) character, followed by the clear-text password.  As with
other SASL mechanisms, the client does not provide an authorization
identity when it wishes the server to derive an identity from the
credentials and use that as the authorization identity.
so it is UserID\0AdminID\0AdminPass
--------------------------------------------------------------------------------
M.Menge                                Tel.: (49) 7071/29-70316
Universität Tübingen                   Fax.: (49) 7071/29-5912
Zentrum für Datenverarbeitung          mail:
michael.menge at zdv.uni-tuebingen.de
Wächterstraße 76
72074 Tübingen
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.andrew.cmu.edu/pipermail/info-cyrus/attachments/20170119/e8353fff/attachment-0001.html>

More information about the Info-cyrus mailing list