Re: [Phpgroupware-developers] md5 question

[Guillaume Courtois]

You can get the .pdf file part of the specs :

http://www.syncml.org/docs/syncml_sync_protocol_v111_20021002.pdf

and check the pages 25 and 26.

Check the SyncML ML for more details. For example :

http://groups.yahoo.com/group/SyncML/message/861

Chris Weiss (address@hidden) wrote*:
>
>do you have a url for this part of the protocol spec?  this really sounds very 
>badly
>thought out on syncml's part.
>
>Guillaume Courtois (address@hidden) wrote*:
>>
>>>ok, i don't understand how this thing is supposed to work.  Any password 
>>>storage
>>>system worth it weight in peanuts will have non-reversable encryption.  why 
>>>on
>>>earth would they make a "standard" that only works when the password on the 
>>>server
>>>is stored in plain text?  I think we're missing sonething here, or maybe 
>>>syncml is
>>>missing something.
>>
>>No no, you did not undestand what I'm saying (sorry, english is not my native
>tongue !).
>>
>>Syncml does the same kind of thing with the password than phpGW, except that a
>syncml client will send username + password + nonce all together. My problem 
>is that
>I should separate the 3 before putting them into the phpGW variables and 
>creating a
>session. But I can't separate the 3 because I can't decode the md5 ...
>>
>>I hope I was clearer in my explanation this time :-)
>>
>>
>>
>>_______________________________________________
>>Phpgroupware-developers mailing list
>>address@hidden
>>http://mail.gnu.org/mailman/listinfo/phpgroupware-developers
>>
>
>
>
>_______________________________________________
>Phpgroupware-developers mailing list
>address@hidden
>http://mail.gnu.org/mailman/listinfo/phpgroupware-developers
>