| <?xml version="1.0" encoding="US-ASCII"?> |
| <testcase> |
| <info> |
| <keywords> |
| IMAP |
| SASL |
| SASL AUTH NTLM |
| SASL AUTH PLAIN |
| SASL DOWNGRADE |
| </keywords> |
| </info> |
| |
| # Server-side |
| <reply> |
| <servercmd> |
| AUTH NTLM PLAIN |
| REPLY "AUTHENTICATE NTLM" + |
| REPLY %b64[NTLMSSP%00%01%00%00%00%06%82%08%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00]b64% + Rubbish |
| REPLY * A002 NO AUTH exchange cancelled by client |
| REPLY "AUTHENTICATE PLAIN" + |
| REPLY %b64[%00user%00secret]b64% A003 OK AUTHENTICATE completed |
| </servercmd> |
| <data crlf="yes"> |
| From: me@somewhere |
| To: fake@nowhere |
| |
| body |
| |
| -- |
| yours sincerely |
| </data> |
| </reply> |
| |
| # Client-side |
| <client> |
| <server> |
| imap |
| </server> |
| <features> |
| NTLM |
| SSL |
| !SSPI |
| </features> |
| <name> |
| IMAP NTLM authentication with SASL downgrade |
| </name> |
| <command> |
| 'imap://%HOSTIP:%IMAPPORT/%TESTNUMBER/;MAILINDEX=1' -u user:secret |
| </command> |
| </client> |
| |
| # Verify data after the test has been "shot" |
| <verify> |
| <protocol crlf="yes"> |
| A001 CAPABILITY |
| A002 AUTHENTICATE NTLM |
| %b64[NTLMSSP%00%01%00%00%00%06%82%08%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00]b64% |
| * |
| A003 AUTHENTICATE PLAIN |
| %b64[%00user%00secret]b64% |
| A004 SELECT %TESTNUMBER |
| A005 FETCH 1 BODY[] |
| A006 LOGOUT |
| </protocol> |
| </verify> |
| </testcase> |
