Passwords with unusual characters

Alex_Hioreanu · February 16, 2006, 5:55pm

Some time ago, we noted that Spark seems to have problems with certain passwords:

http://www.jivesoftware.org/community/message.jspa?messageID=107263#107263

Users at our site are still experiencing this issue with Spark 1.1.0. They are able to log in using other XMPP clients, but not with Spark. I would send a protocol trace, but I’‘m not sure how I can either open the client’'s XML debug console before login or configure Spark to communicate plain-text to allow traffic capture prior to SSL tunnelling to the server.

We will soon upgrade our server software, but at the moment it’'s still running Jive Messenger 2.3.0. Our server is configured to authenticate clients to an external LDAP server. Our LDAP logs indicate that the server is not sending a bind operation for the failed logins, so this may be an interaction on the server end; however, other clients are able to authenticate using these credentials, so if there is something on the server side, it may be triggered by some interaction with the Spark client.

Thanks,

Alex

Derek_DeMoro · February 16, 2006, 6:01pm

Hi ahiorean,

Could you give me an example password that fails please?

Thanks,

Derek

Alex_Hioreanu · February 16, 2006, 6:06pm

Sure, these two passwords fail:

foo<bar

foo&bar

The forum software inserts a greater-than symbol at the end of the message, but it’'s not part of the passwords:

Alex_Hioreanu · February 16, 2006, 6:28pm

I was able to get a protocol trace by setting up two tunnels. This is one of the XMPP messages that Spark is sending:

Message was edited by: ahiorean

Derek_DeMoro · February 16, 2006, 7:20pm

Thanks for the bug report. I’'ll try and get this fixed for the 1.1.1 release. SPARK-223.

Derek