sha256_password Plugin

SHA256 authentication possible exchanges:

• if connection use SSL (SSLRequest Packet sent)

  • client send a clear password answer

• else

  • if client doesn't know server RSA public key

    • client sends a public key request

    • server sends a public key response

  • client sends an RSA encrypted password

  • ends with server sending either OK_Packet , ERR_Packet

Client clear password answer

• string password without encryption

Public key request

• byte<1> fixed 0x01 value

Public key response

• byte<1> fixed 0x01 value

• byte public key data

RSA encrypted password

• byte<256> RSA encrypted password

RSA encrypted value of XOR(password, seed) using server public key (RSA_PKCS1_OAEP_PADDING).

_{This page is licensed: CC BY-SA / Gnu FDL}