On Mon, 2011-02-21 at 14:48 -0500, Keith Palmer Jr. wrote: > Nothing in what you just copy-pasted indicates whether it's *the > actual data stream* that's being encrypted, or just the > *authentication*. I need to know if the checked-out files that are > being transferred are encrypted or not.
The SASL "security layer" refers to protection of the actual data stream. "Encryption of the authentication" isn't really a meaningful concept in SASL parlance; mechanisms always perform authentication steps as securely as they are able.
