ESMTP AUTH PLAIN

ESMTP AUTH PLAIN

am 08.08.2006 23:58:42 von Phillip Parr

Hi. I'm looking for info about the ESMTP 'PLAIN' authentication
mechanism and don't find anything at http://www.ietf.org/ nor using
Google. I would like to know the excat step to conduct a 'AUTH PLAIN'
challenge through telnet.

In fact, I thought the steps was something like ('C' meaning 'Client
sending' and 'S', 'Server replies') this, after the EHLO and its server
response :

C : AUTH PLAIN
S : 334 Username:
C : myname
S : 334 Password:
C : mypass
S : 235 Go Ahead

But, not sure and the simple test I've done against two of my SMTP
accounts failed (after 'AUTH PLAIN', server replies '334 ?', then I type
'myname' and [ENTER] and server does nothing, unless the fact he says
'535 invalid user ID or password' if I type a one character more after
[ENTER]).

Also, the only things I've found about PLAIN mechanism on the web seems
to talk about Base64 encoding : very strange in my mind, since I thought
PLAIN was real plain, without any encoding nor encryption of any sort
(like LOGIN or CRAM-MD5).

What's the reality of this AUTH PLAIN mechanism ?

Re: ESMTP AUTH PLAIN

am 09.08.2006 17:15:19 von mem

In article ,
helgo wrote:
>Hi. I'm looking for info about the ESMTP 'PLAIN' authentication
>mechanism and don't find anything at http://www.ietf.org/ nor using
>Google. I would like to know the excat step to conduct a 'AUTH PLAIN'
>challenge through telnet.

AUTH PLAIN was/is defined in RFC 2595 but there's also an I-D that
expounds on it, draft-ietf-sasl-plain, e.g. at the moment:

http://www.ietf.org/internet-drafts/draft-ietf-sasl-plain-09 .txt


>C : AUTH PLAIN
>S : 334 Username:
>C : myname
>S : 334 Password:
>C : mypass
>S : 235 Go Ahead
>
>But, not sure and the simple test I've done against two of my SMTP
>accounts failed (after 'AUTH PLAIN', server replies '334 ?', then I type
>'myname' and [ENTER] and server does nothing, unless the fact he says
>'535 invalid user ID or password' if I type a one character more after
>[ENTER]).

That's closer to AUTH LOGIN; AUTH PLAIN puts three strings
(authorization id, authentication id, and password) all on one line, but
as you note:


>Also, the only things I've found about PLAIN mechanism on the web seems
>to talk about Base64 encoding : very strange in my mind, since I thought
>PLAIN was real plain, without any encoding nor encryption of any sort
>(like LOGIN or CRAM-MD5).

base64 encoding is used.

Given a username and password, you might test via something like:

bash$ printf "%s\0%s\0%s\0" username username password | mmencode -b
dXNlcm5hbWUAdXNlcm5hbWUAcGFzc3dvcmQA

bash$ telnet example.com 25
...
auth plain
334
dXNlcm5hbWUAdXNlcm5hbWUAcGFzc3dvcmQA
235 authentication successful

(assuming no errors above, of course)

mm

Re: ESMTP AUTH PLAIN

am 11.08.2006 19:18:52 von Phillip Parr

In article , mem@geezer.org says...
>
> AUTH PLAIN was/is defined in RFC 2595 but there's also an I-D that
> expounds on it, draft-ietf-sasl-plain, e.g. at the moment:
>
> http://www.ietf.org/internet-drafts/draft-ietf-sasl-plain-09 .txt
>

OK, Mark. Thanks for your link and explanation. I just see your reply
today (too late) and solved my problem some hours ago starting with page
like this : http://www.technoids.org/saslmech.html about this PLAIN
mechanism.

Re: ESMTP AUTH PLAIN

am 12.08.2006 03:08:07 von Jem Berkes

helgo wrote in news:MPG.1f4326e8689d86bb9898ae@news.tiscali.fr:

> Hi. I'm looking for info about the ESMTP 'PLAIN' authentication
> mechanism and don't find anything at http://www.ietf.org/ nor using
> Google. I would like to know the excat step to conduct a 'AUTH PLAIN'
> challenge through telnet.
>
> In fact, I thought the steps was something like ('C' meaning 'Client
> sending' and 'S', 'Server replies') this, after the EHLO and its server
> response :
>
> C : AUTH PLAIN
> S : 334 Username:
> C : myname
> S : 334 Password:
> C : mypass
> S : 235 Go Ahead
>
> But, not sure and the simple test I've done against two of my SMTP
> accounts failed (after 'AUTH PLAIN', server replies '334 ?',

Have you to make sure the server supports that method, it will tell you in
the response to EHLO

--
Jem Berkes
Software design for Windows and Linux/Unix-like systems
http://www.sysdesign.ca/

Re: ESMTP AUTH PLAIN

am 12.08.2006 13:24:23 von Phillip Parr

In article ,
jb@users.pc9.org says...
> Have you to make sure the server supports that method, it will tell you in
> the response to EHLO
>

Sorry for the delay, but problem with news update these last days. Yes,
it support ESMTP. But, now it's solved : the problem was because I
believed that the PLAI method did accepted plain text rather than base64
encoded one about username and password. Thanks