<testcase> <info> <keywords> POP3 SASL SASL AUTH DIGEST-MD5 SASL AUTH PLAIN SASL DOWNGRADE RFC1734 RFC2831 RFC5034 </keywords> </info> # # Server-side <reply> <servercmd> AUTH DIGEST-MD5 PLAIN REPLY "AUTH DIGEST-MD5" + Rubbish REPLY * -ERR AUTH exchange cancelled by client REPLY "AUTH PLAIN" + REPLY dXNlcgB1c2VyAHNlY3JldA== +OK Login successful </servercmd> <data> From: me@somewhere To: fake@nowhere body -- yours sincerely </data> </reply> # # Client-side <client> <server> pop3 </server> <features> !SSPI debug crypto </features> <name> POP3 DIGEST-MD5 authentication with SASL downgrade </name> <command> pop3://%HOSTIP:%POP3PORT/881 -u user:secret </command> </client> # # Verify data after the test has been "shot" <verify> <protocol> CAPA AUTH DIGEST-MD5 * AUTH PLAIN dXNlcgB1c2VyAHNlY3JldA== RETR 881 QUIT </protocol> </verify> </testcase>