This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author jelie
Recipients jelie
Date 2010-11-01.21:56:31
SpamBayes Score 0.00018947253
Marked as misclassified No
Message-id <1288648592.72.0.261739190945.issue10287@psf.upfronthosting.co.za>
In-reply-to
Content
RFC 4643:

   The server MAY list the AUTHINFO capability with no arguments, which
   indicates that it complies with this specification and does not
   permit any authentication commands in its current state.  In this
   case, the client MUST NOT attempt to utilize any AUTHINFO commands,
   even if it contains logic that might otherwise cause it to do so
   (e.g., for backward compatibility with servers that are not compliant
   with this specification).

Yet, nntplib attempts to authenticate.


self.capabilities() should be sent at startup.

If "READER" is advertised, no need to send a "MODE READER" command at all...

If "MODE-READER" is advertised, then "MODE READER" (if wanted) can be sent.
Then, self.capabilities() should be sent again.  Capabilities changed!

Then authentication if "AUTHINFO USER" is advertised with NNTP version >=2.  If "AUTHINFO" without "USER", no authentication at all.

And after authentication, self.capabilities() should be sent again.



Please note that the readermode_afterauth variable I see in the source code should normally not be used by a client...  RFC 4643 mentions:

   o  the MODE READER command MUST NOT be used in the
      same session following successful authentication.
History
Date User Action Args
2010-11-01 21:56:32jeliesetrecipients: + jelie
2010-11-01 21:56:32jeliesetmessageid: <1288648592.72.0.261739190945.issue10287@psf.upfronthosting.co.za>
2010-11-01 21:56:31jelielinkissue10287 messages
2010-11-01 21:56:31jeliecreate