cURL / Mailing Lists / curl-library / Single Mail

curl-library

RE: CURL SMTP - Bypass Authentication

From: Steve Holme <steve_holme_at_hotmail.com>
Date: Wed, 26 Mar 2014 22:20:00 +0000

On Tue, 25 Mar 2014, Steve Holme wrote:

> The only problem I foresee with this, is if the server supports
> authentication but it supports a mechanism that we don't
> recognise. This would then get caught by this if statement as
> authmechs would be zero but technically it should fail with
> "No supported mechanisms".

I now have a proper fix for this which takes this into account.

Does anyone have any views to whether supplying a username and password to a
server that doesn't support authentication is a valid use case and should
work as if no username/password had been supplied?

Kind Regards

Steve
-------------------------------------------------------------------
List admin: http://cool.haxx.se/list/listinfo/curl-library
Etiquette: http://curl.haxx.se/mail/etiquette.html
Received on 2014-03-26

This message: [ Message body ]
Next message: Daniel Stenberg: "RE: CURL SMTP - Bypass Authentication"
Previous message: Steve Holme: "RE: [SECURITY ADVISORY 1/4] libcurl wrong re-use of connections"
In reply to: Steve Holme: "RE: CURL SMTP - Bypass Authentication"
Next in thread: Daniel Stenberg: "RE: CURL SMTP - Bypass Authentication"
Reply: Daniel Stenberg: "RE: CURL SMTP - Bypass Authentication"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]