[issue10287] NNTP authentication should check capabilities
Antoine Pitrou
report at bugs.python.org
Sun Feb 12 04:02:17 CET 2012
Antoine Pitrou <pitrou at free.fr> added the comment:
Hynek, the patch doesn't apply properly here. Are you soon it's been generated against an up-to-date working copy?
Also, I think the logic is wrong: the capabilities should *always* be queried after auth, even if they are already known. That's because they can change after auth is successful.
See RFC 4643: “Other capabilities returned in response to a CAPABILITIES
command received after authentication MAY be different from those
returned before authentication. For example, an NNTP server may not
want to advertise support for a specific extension unless a client
has been authenticated.”
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue10287>
_______________________________________
More information about the Python-bugs-list
mailing list