db-derby-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Sunitha Kambhampati <ksunitha...@gmail.com>
Subject Re: [jira] Updated: (DERBY-928) Add ability to network server to accept connections with a certain security mechanism.
Date Tue, 14 Feb 2006 18:51:08 GMT
<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
  <meta content="text/html;charset=UTF-8" http-equiv="Content-Type">
  <title></title>
</head>
<body bgcolor="#ffffff" text="#000000">
Hi Bryan, <br>
<br>
Thanks for looking into this and your questions.  <br>
<br>
Bryan Pendleton wrote:
<blockquote cite="mid43F1F70E.3010207@amberpoint.com" type="cite">I
haven't read the code yet; I was just reading your change notes. But
  <br>
I had three questions:
1) If the server property is unset, and the client requests a valid
  <br>
security mechanism, what is the expected behavior?
  <br>
</blockquote>
The server property is static, so it will take effect only when the
server is restarted.  Thus if you unset the property when server is
running, it will have no effect on the server. This property is read
when server is started and the value is stored in the variable
'allowOnlySecurityMechanism'. The only place this variable is set is
when reading the system properties ( getPropertyInfo which is called
when initializing the NetworkServerControlImpl).<br>
<br>
E.g.  if server is started with
-Dderby.drda.securityMechanism=ENCRYPTED_USER_AND_PASSWORD_SECURITY and
unset when server is running by removing it in derby.properties or any
other way, the change of unset will have no effect on the running
server.<br>
Only clients sending a security mechanism of value 9 which is equal to
the ENCRYPTED_USER_AND_PASSWORD_SECURITY will be accepted by server.<br>
<br>
<blockquote cite="mid43F1F70E.3010207@amberpoint.com" type="cite">2) If
the server property is set to a valid mechanism, and the client does
  <br>
not specify a security mechanism, what is the expected behavior?
  <br>
  <br>
</blockquote>
Good question. Please note, this  patch does not make any changes to
the client behavior.  Currently this is how derby client behaves: <br>
-- the default security mechanism on the client is USER_ONLY_SECURITY
(0x4). If client url does not have a userid, client defaults to user
'APP'.<br>
-- but there is an automatic upgrade happening on the client side (
code in ClientBaseDataSource# getUpgradedSecurityMechanism() )<br>
 and the condition for upgrade is as follows:<br>
 if connection url has both userid and password  and if security
mechanism is USER_ONLY_SECURITY(0x4) then upgrade security mechanism to
CLEAR_TEXT_PASSWORD_SECURITY ( 0x3).<br>
<br>
Actually even if a security mechanism is explicitly specified in the
connection url, the upgrade happens.  I posted this question as part of
DERBY-962 .<br>
<pre wrap=""><a class="moz-txt-link-freetext"
 href="http://issues.apache.org/jira/browse/DERBY-962?page=comments#action_12366173">http://issues.apache.org/jira/browse/DERBY-962?page=comments#action_12366173</a>
 </pre>
<br>
3) Is it possible for the server to support multiple security
mechanisms
<br>
<blockquote cite="mid43F1F70E.3010207@amberpoint.com" type="cite">simultaneously
(presumably with different clients)?
  <br>
  <br>
</blockquote>
This patch does not support multiple security mechanism to be specified
as part of the derby.drda.securityMechanism.  But I think it is a good
thing to support and have listed this as a future enhancement in my
proposal. <br>
<blockquote cite="mid43F1F70E.3010207@amberpoint.com" type="cite">I'm
trying to prepare a decision table in my head for all the various
  <br>
combinations of server-specified mechanism and client-requested
mechanism.
  <br>
  <br>
</blockquote>
I should have posted this along with the description to help make it
more clear. sorry.  <br>
Here is the table. <br>
<br>
<table class="MsoTableGrid"
 style="border: medium none ; width: 903.65pt; border-collapse: collapse;"
 border="1" cellpadding="0" cellspacing="0" width="1205">
  <tbody>
    <tr style="height: 32.5pt;">
      <td
 style="border: 1pt solid windowtext; padding: 0in 5.4pt; width: 37.8pt; height: 32.5pt;"
 valign="top" width="50">
      <p class="MsoNormal"><span style="font-size: 8pt;">#Nos<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: solid solid solid none; border-color: windowtext windowtext windowtext
-moz-use-text-color; border-width: 1pt 1pt 1pt medium; padding: 0in 5.4pt; width: 222.8pt;
height: 32.5pt;"
 valign="top" width="297">
      <p class="MsoNormal"><span style="font-size: 8pt;">Client
connection url<o:p></o:p></span></p>
      <p class="MsoNormal"><span style="font-size: 8pt;">(only some
relevant attributes shown)<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: solid solid solid none; border-color: windowtext windowtext windowtext
-moz-use-text-color; border-width: 1pt 1pt 1pt medium; padding: 0in 5.4pt; width: 0.75in;
height: 32.5pt;"
 valign="top" width="72">
      <p class="MsoNormal"><span style="font-size: 8pt;">Client sends
secmec value<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: solid solid solid none; border-color: windowtext windowtext windowtext
-moz-use-text-color; border-width: 1pt 1pt 1pt medium; padding: 0in 5.4pt; width: 1.5in; height:
32.5pt;"
 valign="top" width="144">
      <p class="MsoNormal"><span style="font-size: 8pt;">Not set<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: solid solid solid none; border-color: windowtext windowtext windowtext
-moz-use-text-color; border-width: 1pt 1pt 1pt medium; padding: 0in 5.4pt; width: 119.55pt;
height: 32.5pt;"
 valign="top" width="159">
      <p class="MsoNormal"><span style="font-size: 8pt;">Server started
with derby.drda.securityMechanism=<o:p></o:p></span></p>
      <p class="MsoNormal"><span style="font-size: 8pt;">USER_ONLY_SECURITY<o:p></o:p></span></p>
      <p class="MsoNormal"><span style="font-size: 8pt;">(0x4)<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: solid solid solid none; border-color: windowtext windowtext windowtext
-moz-use-text-color; border-width: 1pt 1pt 1pt medium; padding: 0in 5.4pt; width: 159.45pt;
height: 32.5pt;"
 valign="top" width="213">
      <p class="MsoNormal"><span style="font-size: 8pt;">Server started
with derby.drda.securityMechanism=<o:p></o:p></span></p>
      <p class="MsoNormal"><span style="font-size: 8pt;">CLEAR_TEXT_PASSWORD_SECURITY<o:p></o:p></span></p>
      <p class="MsoNormal"><span style="font-size: 8pt;">(0x3)<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: solid solid solid none; border-color: windowtext windowtext windowtext
-moz-use-text-color; border-width: 1pt 1pt 1pt medium; padding: 0in 5.4pt; width: 202.05pt;
height: 32.5pt;"
 valign="top" width="269">
      <p class="MsoNormal"><span style="font-size: 8pt;">Server started
with derby.drda.securityMechanism=<o:p></o:p></span></p>
      <p class="MsoNormal"><span style="font-size: 8pt;">ENCRYPTED_USER_AND_PASSWORD_SECURITY<o:p></o:p></span></p>
      <p class="MsoNormal"><span style="font-size: 8pt;">(0x9)<o:p></o:p></span></p>
      </td>
    </tr>
    <tr style="height: 25.6pt;">
      <td
 style="border-style: none solid solid; border-color: -moz-use-text-color windowtext windowtext;
border-width: medium 1pt 1pt; padding: 0in 5.4pt; width: 37.8pt; height: 25.6pt;"
 valign="top" width="50">
      <p class="MsoNormal"><span style="font-size: 10pt;">A<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
222.8pt; height: 25.6pt;"
 valign="top" width="297">
      <p class="MsoNormal"><span style="font-size: 10pt;">db;user=a<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
0.75in; height: 25.6pt;"
 valign="top" width="72">
      <p class="MsoNormal"><span style="font-size: 10pt;">0x04<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
1.5in; height: 25.6pt;"
 valign="top" width="144">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
119.55pt; height: 25.6pt;"
 valign="top" width="159">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
159.45pt; height: 25.6pt;"
 valign="top" width="213">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this.<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
202.05pt; height: 25.6pt;"
 valign="top" width="269">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this<o:p></o:p></span></p>
      </td>
    </tr>
    <tr style="height: 25.6pt;">
      <td
 style="border-style: none solid solid; border-color: -moz-use-text-color windowtext windowtext;
border-width: medium 1pt 1pt; padding: 0in 5.4pt; width: 37.8pt; height: 25.6pt;"
 valign="top" width="50">
      <p class="MsoNormal"><span style="font-size: 10pt;">B<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
222.8pt; height: 25.6pt;"
 valign="top" width="297">
      <p class="MsoNormal"><span style="font-size: 10pt;">Db;user=a;password=p<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
0.75in; height: 25.6pt;"
 valign="top" width="72">
      <p class="MsoNormal"><span style="font-size: 10pt;">0x03<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
1.5in; height: 25.6pt;"
 valign="top" width="144">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
119.55pt; height: 25.6pt;"
 valign="top" width="159">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this.<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
159.45pt; height: 25.6pt;"
 valign="top" width="213">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
202.05pt; height: 25.6pt;"
 valign="top" width="269">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this.<o:p></o:p></span></p>
      </td>
    </tr>
    <tr style="height: 25.6pt;">
      <td
 style="border-style: none solid solid; border-color: -moz-use-text-color windowtext windowtext;
border-width: medium 1pt 1pt; padding: 0in 5.4pt; width: 37.8pt; height: 25.6pt;"
 valign="top" width="50">
      <p class="MsoNormal"><span style="font-size: 10pt;">C<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
222.8pt; height: 25.6pt;"
 valign="top" width="297">
      <p class="MsoNormal"><span style="font-size: 10pt;">Db;user=a;securityMechanism=4<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
0.75in; height: 25.6pt;"
 valign="top" width="72">
      <p class="MsoNormal"><span style="font-size: 10pt;">0x04<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
1.5in; height: 25.6pt;"
 valign="top" width="144">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
119.55pt; height: 25.6pt;"
 valign="top" width="159">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
159.45pt; height: 25.6pt;"
 valign="top" width="213">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this.<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
202.05pt; height: 25.6pt;"
 valign="top" width="269">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this<o:p></o:p></span></p>
      </td>
    </tr>
    <tr style="height: 25.6pt;">
      <td
 style="border-style: none solid solid; border-color: -moz-use-text-color windowtext windowtext;
border-width: medium 1pt 1pt; padding: 0in 5.4pt; width: 37.8pt; height: 25.6pt;"
 valign="top" width="50">
      <p class="MsoNormal"><span style="font-size: 10pt;">D<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
222.8pt; height: 25.6pt;"
 valign="top" width="297">
      <p class="MsoNormal"><span style="font-size: 10pt;">Db;user=a;password=p;securityMechanism=4<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
0.75in; height: 25.6pt;"
 valign="top" width="72">
      <p class="MsoNormal"><span style="font-size: 10pt;">0x03<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
1.5in; height: 25.6pt;"
 valign="top" width="144">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
119.55pt; height: 25.6pt;"
 valign="top" width="159">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
159.45pt; height: 25.6pt;"
 valign="top" width="213">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
202.05pt; height: 25.6pt;"
 valign="top" width="269">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this.<o:p></o:p></span></p>
      </td>
    </tr>
    <tr style="height: 25.6pt;">
      <td
 style="border-style: none solid solid; border-color: -moz-use-text-color windowtext windowtext;
border-width: medium 1pt 1pt; padding: 0in 5.4pt; width: 37.8pt; height: 25.6pt;"
 valign="top" width="50">
      <p class="MsoNormal"><span style="font-size: 10pt;">E<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
222.8pt; height: 25.6pt;"
 valign="top" width="297">
      <p class="MsoNormal"><span style="font-size: 10pt;">Db;user=a;password=p;securityMechanism=3<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
0.75in; height: 25.6pt;"
 valign="top" width="72">
      <p class="MsoNormal"><span style="font-size: 10pt;">0x03<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
1.5in; height: 25.6pt;"
 valign="top" width="144">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
119.55pt; height: 25.6pt;"
 valign="top" width="159">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
159.45pt; height: 25.6pt;"
 valign="top" width="213">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
202.05pt; height: 25.6pt;"
 valign="top" width="269">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this.<o:p></o:p></span></p>
      </td>
    </tr>
    <tr style="height: 25.6pt;">
      <td
 style="border-style: none solid solid; border-color: -moz-use-text-color windowtext windowtext;
border-width: medium 1pt 1pt; padding: 0in 5.4pt; width: 37.8pt; height: 25.6pt;"
 valign="top" width="50">
      <p class="MsoNormal"><span style="font-size: 10pt;">F<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
222.8pt; height: 25.6pt;"
 valign="top" width="297">
      <p class="MsoNormal"><span style="font-size: 10pt;">Db;user=a;password=p;securityMechanism=9<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
0.75in; height: 25.6pt;"
 valign="top" width="72">
      <p class="MsoNormal"><span style="font-size: 10pt;">0x09<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
1.5in; height: 25.6pt;"
 valign="top" width="144">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
119.55pt; height: 25.6pt;"
 valign="top" width="159">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this <o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
159.45pt; height: 25.6pt;"
 valign="top" width="213">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
202.05pt; height: 25.6pt;"
 valign="top" width="269">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says
OK.<o:p></o:p></span></p>
      </td>
    </tr>
    <tr style="height: 25.6pt;">
      <td
 style="border-style: none solid solid; border-color: -moz-use-text-color windowtext windowtext;
border-width: medium 1pt 1pt; padding: 0in 5.4pt; width: 37.8pt; height: 25.6pt;"
 valign="top" width="50">
      <p class="MsoNormal"><span style="font-size: 10pt;">G<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
222.8pt; height: 25.6pt;"
 valign="top" width="297">
      <p class="MsoNormal"><span style="font-size: 10pt;">Db;user=a;password=p;securityMechanism=12<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
0.75in; height: 25.6pt;"
 valign="top" width="72">
      <p class="MsoNormal"><span style="font-size: 10pt;">0x12<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
1.5in; height: 25.6pt;"
 valign="top" width="144">
      <p class="MsoNormal"><span style="font-size: 10pt;">Protocol
error, DERBY926<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
119.55pt; height: 25.6pt;"
 valign="top" width="159">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
159.45pt; height: 25.6pt;"
 valign="top" width="213">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
202.05pt; height: 25.6pt;"
 valign="top" width="269">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this<o:p></o:p></span></p>
      </td>
    </tr>
    <tr style="height: 25.6pt;">
      <td
 style="border-style: none solid solid; border-color: -moz-use-text-color windowtext windowtext;
border-width: medium 1pt 1pt; padding: 0in 5.4pt; width: 37.8pt; height: 25.6pt;"
 valign="top" width="50">
      <p class="MsoNormal"><span style="font-size: 10pt;">H<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
222.8pt; height: 25.6pt;"
 valign="top" width="297">
      <p class="MsoNormal"><span style="font-size: 10pt;">Db;<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
0.75in; height: 25.6pt;"
 valign="top" width="72">
      <p class="MsoNormal"><span style="font-size: 10pt;">0x04<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
1.5in; height: 25.6pt;"
 valign="top" width="144">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
119.55pt; height: 25.6pt;"
 valign="top" width="159">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server says OK<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
159.45pt; height: 25.6pt;"
 valign="top" width="213">
      <p class="MsoNormal"><span style="font-size: 10pt;">Server
rejects this.<o:p></o:p></span></p>
      </td>
      <td
 style="border-style: none solid solid none; border-color: -moz-use-text-color windowtext
windowtext -moz-use-text-color; border-width: medium 1pt 1pt medium; padding: 0in 5.4pt; width:
202.05pt; height: 25.6pt;"
 valign="top" width="269">
      <p class="MsoNormal"><span style="font-size: 10pt;"><o:p> Server
rejects this<br>
      </o:p></span></p>
      </td>
    </tr>
  </tbody>
</table>
<br>
<br>
<p class="MsoNormal"><span style="font-size: 10pt;">The network server
supports
currently the following security mechanisms:<o:p></o:p></span></p>
<><span style="font-size: 10pt;">USER_ONLY_SECURITY<o:p></o:p><br>
CLEAR_TEXT_PASSWORD_SECURITY<o:p></o:p></span></><span
 style="font-size: 10pt;"><br>
ENCRYPTED_USER_AND_PASSWORD_SECURITY<o:p></o:p></span>
<><span style="font-size: 10pt;"><br>
<br>
But note, that the encrypted
userid password case will not work with sun jce because the prime that
the DH algorithm needs per the DRDA spec is not supported in sun jce. <br>
</span></><><span style="font-size: 10pt;"><span style=""><br>
</span>When working on this jira, I had a couple
ideas of maybe if server is running with sun jce, we should not say we
support
the encrypted userid &amp; password case, and another thing would be it
seems like
if server rejects the secmec value but instead sends a list of
supported secmec
values the client can decide if it wants to use one of those server
supported
secmec values to connect.<span style="">  </span>We currently don’t
have this 
support in the client.<br>
<br>
Some more security mechanism related jira entries  DERBY-962,963<br>
<br>
Thanks again for reviewing this.<br>
Sunitha.<br>
</span></><br>
</body>
</html>

Mime
View raw message