IMAP
IMAP AUTH DIGEST-MD5
IMAP AUTH PLAIN
SASL DOWNGRADE
RFC2831
#
# Server-side
AUTH DIGEST-MD5 PLAIN
REPLY "AUTHENTICATE DIGEST-MD5" + Rubbish
REPLY * A002 NO AUTH exchange cancelled by client
REPLY "AUTHENTICATE PLAIN" +
REPLY dXNlcgB1c2VyAHNlY3JldA== A003 OK AUTHENTICATE completed
From: me@somewhere
To: fake@nowhere
body
--
yours sincerely
#
# Client-side
imap
debug
crypto
IMAP DIGEST-MD5 authentication with SASL downgrade
'imap://%HOSTIP:%IMAPPORT/835/;UID=1' -u user:secret
#
# Verify data after the test has been "shot"
A001 CAPABILITY
A002 AUTHENTICATE DIGEST-MD5
*
A003 AUTHENTICATE PLAIN
dXNlcgB1c2VyAHNlY3JldA==
A004 SELECT 835
A005 FETCH 1 BODY[]
A006 LOGOUT