| < draft-ietf-aft-username-password-00.txt | draft-ietf-aft-username-password-01.txt > | |||
|---|---|---|---|---|
| Username/Password Authentication for SOCKS V5 | Username/Password Authentication for SOCKS V5 | |||
| INTERNET-DRAFT | INTERNET-DRAFT | |||
| Expires: In Six Months M. Leech | Expires: In Six Months M. Leech | |||
| <draft-ietf-aft-username-password-00.txt> | <draft-ietf-aft-username-password-01.txt> | |||
| Username/Password Authentication for SOCKS V5 | Username/Password Authentication for SOCKS V5 | |||
| Status of this Memo | Status of this Memo | |||
| This document is an Internet-Draft. Internet-Drafts are working | This document is an Internet-Draft. Internet-Drafts are working | |||
| documents of the Internet Engineering Task Force (IETF), its areas, | documents of the Internet Engineering Task Force (IETF), its areas, | |||
| and its working groups. Note that other groups may also distribute | and its working groups. Note that other groups may also distribute | |||
| working documents as Internet-Drafts. | working documents as Internet-Drafts. | |||
| skipping to change at page 1, line 39 ¶ | skipping to change at page 1, line 39 ¶ | |||
| The protocol specification for SOCKS Version 5 specifies a | The protocol specification for SOCKS Version 5 specifies a | |||
| generalized framework for the use of arbitrary authentication | generalized framework for the use of arbitrary authentication | |||
| protocols in the initial socks connection setup. This document | protocols in the initial socks connection setup. This document | |||
| describes one of those protocols, as it fits into the SOCKS Version 5 | describes one of those protocols, as it fits into the SOCKS Version 5 | |||
| authentication "subnegotiation". | authentication "subnegotiation". | |||
| 2. Initial negotiation | 2. Initial negotiation | |||
| Once the SOCKS V5 server has started, and the client has selected the | Once the SOCKS V5 server has started, and the client has selected the | |||
| Username/Password Authentication protocol, the Username/Password | Username/Password Authentication protocol, the Username/Password | |||
| subnegotiation begins. This begins with the client producing a | subnegotiation begins. This begins with the client producing a | |||
| Username/Password request: | Username/Password request: | |||
| +----+------+----------+------+----------+ | +----+------+----------+------+----------+ | |||
| |VER | ULEN | UNAME | PLEN | PASSWD | | |VER | ULEN | UNAME | PLEN | PASSWD | | |||
| +----+------+----------+------+----------+ | +----+------+----------+------+----------+ | |||
| | 1 | 1 | 1 to 255 | 1 | 1 to 255 | | | 1 | 1 | 1 to 255 | 1 | 1 to 255 | | |||
| +----+------+----------+------+----------+ | +----+------+----------+------+----------+ | |||
| The VER field contains the current version of the subne- | The VER field contains the current version of the subne- | |||
| gotiation, which is X'01'. The ULEN field contains the | gotiation, which is X'01'. The ULEN field contains the | |||
| skipping to change at page 2, line 32 ¶ | skipping to change at page 2, line 32 ¶ | |||
| A STATUS field of X'00' indicates success. If the server | A STATUS field of X'00' indicates success. If the server | |||
| returns a `failure' (STATUS value other than X'00') sta- | returns a `failure' (STATUS value other than X'00') sta- | |||
| tus, it MUST close the connection. | tus, it MUST close the connection. | |||
| 3. Security Considerations | 3. Security Considerations | |||
| This document describes a subnegotiation that provides | This document describes a subnegotiation that provides | |||
| authentication services to the SOCKS protocol. Since the | authentication services to the SOCKS protocol. Since the | |||
| request carries the password in cleartext, this subnego- | request carries the password in cleartext, this subnego- | |||
| tiation is not recommended for environments where "sniff- | tiation is not recommended for environments where "sniff- | |||
| ing" is possible and practical | ing" is possible and practical. | |||
| 4. Authors Address | 4. Authors Address | |||
| Marcus Leech | Marcus Leech | |||
| Bell-Northern Research Ltd | Bell-Northern Research Ltd | |||
| P.O. Box 3511, Station C | P.O. Box 3511, Station C | |||
| Ottawa, ON | Ottawa, ON | |||
| CANADA K1Y 4H7 | CANADA K1Y 4H7 | |||
| +1 613 763 9145 | +1 613 763 9145 | |||
| End of changes. 3 change blocks. | ||||
| 3 lines changed or deleted | 3 lines changed or added | |||
This html diff was produced by rfcdiff 1.48. The latest version is available from http://tools.ietf.org/tools/rfcdiff/ | ||||