Simon Josefsson
Simon Josefsson
It was some time since I was well versed on the SCRAM downgrade protection complexity, but I believe that generally you are right that an adversary is able to MITM...
To compare with the jabber.ru issue: if clients (and servers) had supported SCRAM-PLUS, then you would have gotten connection failures and notice the passive TLS MITM before the certificate expired....
I would ignore tls-server-end-point and focus on mandatory SCRAM-PLUS with tls-exporter. If there is ever a serious significant use-case for non-plus SCRAM or tls-server-end-point, it could be added later, but...
> Support for SCRAM-SHA-256-PLUS and SCRAM-SHA-1-PLUS is now in the git repository. > > This is tested so far against Exim via TLS 1.2 and TLS 1.3, but this basically...
I hope that the manual covers this, see: https://www.gnu.org/software/gsasl/manual/html_node/SCRAM.html#SCRAM Yes it is preferential to store SERVERKEY/STOREDKEY on the server, however I believe this advantage is exagerated: if you steal them,...
Have a look at recent versions of the ownCloud News Android app -- it "imports" the ownCloud credential in a nice way.
FWIW, it does not happen when processing AEADs for a key handle of 0x100700 or 0x100800. If I try to pass it --key-handle 100a00 it says: Could not parse key_handle...
The patch looks harmless to me, but I'd like to understand when this actually matters. Doesn't ykksm-import handle the CSV format generated by ykpers? It seems column ordering only matters...
Interesting! Maybe it is the pasting that ends up corrupting the password? Have you checked that you didn't accidentally select part of the password before pasting the OTP? The YubiClip...
Thanks for debugging this! It is probably Android trying to be helpful by adding the space. Resolving issue #1 will probably be the best solution for you, right? Or can...