~ubuntu-branches/ubuntu/trusty/dante/trusty-proposed

« back to all changes in this revision

Viewing changes to doc/rfc1929.txt

Committer: Bazaar Package Importer
Author(s): Adrian Bridgett
Date: 2002-04-07 12:45:55 UTC
Revision ID: james.westby@ubuntu.com-20020407124555-qke8rt2tdor0naz2

Tags: upstream-1.1.11.12p1

Import upstream version 1.1.11.12p1

files added:

BUGS

CREDITS

INSTALL

LICENSE

Makefile.am

Makefile.in

NEWS

PRERELEASE

README

SPECS

SPECS/Makefile.am

SPECS/Makefile.in

SPECS/dante.spec

SPECS/dante.spec.in

SUPPORT

TODO

VERSION

VERSION.in

acconfig.h

acinclude.m4

aclocal.m4

bin/Makefile.am

bin/Makefile.in

bin/sockd-graphgen

bin/socksify.in

capi

capi/Makefile.am

capi/Makefile.in

capi/socks.h

config.guess

config.sub

configure

configure.ac

contrib

contrib/Makefile.am

contrib/Makefile.in

contrib/README

contrib/sockd-stat.awk

depcomp

dlib

dlib/Makefile.am

dlib/Makefile.in

dlib/Raccept.c

dlib/Rbind.c

dlib/Rbindresvport.c

dlib/Rcompat.c

dlib/Rconnect.c

dlib/Rgethostbyname.c

dlib/Rgetpeername.c

dlib/Rgetsockname.c

dlib/Rrresvport.c

dlib/address.c

dlib/addressmatch.c

dlib/authneg.c

dlib/broken.c

dlib/client.c

dlib/clientconfig.c

dlib/clientprotocol.c

dlib/config.c

dlib/config_parse.c

dlib/config_parse.h

dlib/config_parse.y

dlib/config_scan.c

dlib/config_scan.l

dlib/connectchild.c

dlib/debug.c

dlib/hostcache.c

dlib/httpproxy.c

dlib/int_osf1.c

dlib/int_osf2.c

dlib/int_osf3.c

dlib/interposition.c

dlib/io.c

dlib/log.c

dlib/method_uname.c

dlib/msproxy_clientprotocol.c

dlib/protocol.c

dlib/serr.c

dlib/socket.c

dlib/tostring.c

dlib/udp.c

dlib/udp_util.c

dlib/userio.c

dlib/util.c

doc/Makefile.am

doc/Makefile.in

doc/README.msproxy

doc/README.socksify

doc/README.survey

doc/README.usage

doc/SOCKS4.protocol

doc/faq.ps

doc/faq.tex

doc/module

doc/module/Makefile.am

doc/module/Makefile.in

doc/module/bandwidth.ps

doc/module/bandwidth.tex

doc/module/redirect.ps

doc/module/redirect.tex

doc/rfc1928.txt

doc/rfc1929.txt

doc/sockd.8

doc/sockd.conf.5

doc/socks.conf.5

example

example/Makefile.am

example/Makefile.in

example/sockd-basic.conf

example/sockd.conf

example/socks-simple-withoutnameserver.conf

example/socks-simple.conf

example/socks.conf

include

include/Makefile.am

include/Makefile.in

include/autoconf.h.in

include/common.h

include/config.h

include/interposition.h

include/redefac.h

include/redefgen.sh

include/sockd.h

include/socks.h

include/stamp-h.in

include/tostring.h

include/yacconfig.h

install-sh

lib/Makefile.am

lib/Makefile.in

lib/Raccept.c

lib/Rbind.c

lib/Rbindresvport.c

lib/Rcompat.c

lib/Rconnect.c

lib/Rgethostbyname.c

lib/Rgetpeername.c

lib/Rgetsockname.c

lib/Rrresvport.c

lib/address.c

lib/addressmatch.c

lib/authneg.c

lib/broken.c

lib/client.c

lib/clientconfig.c

lib/clientprotocol.c

lib/config.c

lib/config_parse.c

lib/config_parse.h

lib/config_parse.y

lib/config_scan.c

lib/config_scan.l

lib/connectchild.c

lib/debug.c

lib/hostcache.c

lib/httpproxy.c

lib/io.c

lib/log.c

lib/method_uname.c

lib/msproxy_clientprotocol.c

lib/protocol.c

lib/serr.c

lib/socket.c

lib/tostring.c

lib/udp.c

lib/udp_util.c

lib/userio.c

lib/util.c

libscompat

libscompat/Makefile.am

libscompat/Makefile.in

libscompat/compat.h

libscompat/daemon.c

libscompat/difftime.c

libscompat/getdtablesize.c

libscompat/getifaddrs.c

libscompat/hstrerror.c

libscompat/inet_aton.c

libscompat/inet_ntoa.c

libscompat/inet_pton.c

libscompat/issetugid.c

libscompat/memmove.c

libscompat/seteuid.c

libscompat/setproctitle.c

libscompat/snprintf.c

libscompat/sockatmark.c

libscompat/strerror.c

libscompat/strvis.c

libscompat/vsyslog.c

ltmain.sh

missing

mkinstalldirs

sockd

sockd/Makefile.am

sockd/Makefile.in

sockd/accesscheck.c

sockd/addressmatch.c

sockd/auth_pam.c

sockd/auth_password.c

sockd/bandwidth.c

sockd/bandwidth_key.c

sockd/broken.c

sockd/checkmodule.c

sockd/config.c

sockd/config_parse.c

sockd/config_parse.h

sockd/config_parse.y

sockd/config_scan.c

sockd/config_scan.l

sockd/debug.c

sockd/getifa.c

sockd/hostcache.c

sockd/interposition.c

sockd/io.c

sockd/lib_protocol.c

sockd/log.c

sockd/method_uname.c

sockd/redirect.c

sockd/redirect_key.c

sockd/serr.c

sockd/serverconfig.c

sockd/sockd.c

sockd/sockd_child.c

sockd/sockd_io.c

sockd/sockd_negotiate.c

sockd/sockd_protocol.c

sockd/sockd_request.c

sockd/sockd_socket.c

sockd/sockd_util.c

sockd/socket.c

sockd/tostring.c

sockd/udp_util.c

sockd/util.c

unlicensed

unlicensed/Makefile.am

unlicensed/Makefile.in

unlicensed/bandwidth.c

unlicensed/bandwidth_key.c

unlicensed/checkmodule.c

unlicensed/redirect.c

unlicensed/redirect_key.c

Show diffs side-by-side

added added

removed removed

doc/rfc1929.txt

Network Working Group M. Leech

Request for Comments: 1929 Bell-Northern Research Ltd

Category: Standards Track March 1996

Username/Password Authentication for SOCKS V5

Status of this Memo

This document specifies an Internet standards track protocol for the

Internet community, and requests discussion and suggestions for

improvements. Please refer to the current edition of the "Internet

Official Protocol Standards" (STD 1) for the standardization state

and status of this protocol. Distribution of this memo is unlimited.

1. Introduction

The protocol specification for SOCKS Version 5 specifies a

generalized framework for the use of arbitrary authentication

protocols in the initial socks connection setup. This document

describes one of those protocols, as it fits into the SOCKS Version 5

authentication "subnegotiation".

Note:

Unless otherwise noted, the decimal numbers appearing in packet-

format diagrams represent the length of the corresponding field, in

octets. Where a given octet must take on a specific value, the

syntax X'hh' is used to denote the value of the single octet in that

field. When the word 'Variable' is used, it indicates that the

corresponding field has a variable length defined either by an

associated (one or two octet) length field, or by a data type field.

2. Initial negotiation

Once the SOCKS V5 server has started, and the client has selected the

Username/Password Authentication protocol, the Username/Password

subnegotiation begins. This begins with the client producing a

Username/Password request:

+----+------+----------+------+----------+

+----+------+----------+------+----------+

| 1 | 1 | 1 to 255 | 1 | 1 to 255 |

+----+------+----------+------+----------+

Leech Standards Track [Page 1]

RFC 1929 Username Authentication for SOCKS V5 March 1996

The VER field contains the current version of the subnegotiation,

which is X'01'. The ULEN field contains the length of the UNAME field

that follows. The UNAME field contains the username as known to the

source operating system. The PLEN field contains the length of the

PASSWD field that follows. The PASSWD field contains the password

association with the given UNAME.

The server verifies the supplied UNAME and PASSWD, and sends the

following response:

+----+--------+

|VER | STATUS |

+----+--------+

| 1 | 1 |

+----+--------+

A STATUS field of X'00' indicates success. If the server returns a

`failure' (STATUS value other than X'00') status, it MUST close the

connection.

3. Security Considerations

This document describes a subnegotiation that provides authentication

services to the SOCKS protocol. Since the request carries the

password in cleartext, this subnegotiation is not recommended for

environments where "sniffing" is possible and practical.

4. Author's Address

Marcus Leech

Bell-Northern Research Ltd

P.O. Box 3511, Station C

Ottawa, ON

CANADA K1Y 4H7

Phone: +1 613 763 9145

EMail: mleech@bnr.ca

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

Leech Standards Track [Page 2]

115

Older »