Hey, On Wed, Mar 12, 2014 at 06:45:37PM +0000, Dietmar Maurer wrote: > >support for unencrypted tickets, the server can > > instruct it it should send one. For now, this is restricted to encrypted > > channels as > > we don't want to expose an unencrypted password over a non-TLS channel. > > Clients with unencrypted password support won't send these just yet as the > > server does not expose the required capability. > > Wouldn't it make more sense to add PLAIN username/password AUTH instead.
This comment, and Marc-André concerns about some backward-compatibility bits made me realize it would be much easier and less invasive to add a way for the client to advertise it can use SASL, and to make guarantees it won't try to use the RSA key when it uses SASL. Christophe
pgpsvyA_CKC8C.pgp
Description: PGP signature
_______________________________________________ Spice-devel mailing list Spice-devel@lists.freedesktop.org http://lists.freedesktop.org/mailman/listinfo/spice-devel
