All pages
Powered by GitBook
1 of 1

sha256_password Plugin

Overview

SHA256 authentication possible exchanges:

  • if connection use SSL (SSLRequest Packet sent):

    • Client sends a clear password answer.

  • Else:

    • If client doesn't know server RSA public key:

      • Client sends a public key request.

      • Server sends a public key response.

    • Client sends an RSA encrypted password.

    • Ends with server sending either OK_Packet , ERR_Packet.

Authentication

Client Clear Password Answer

  • string password without encryption.

Public key request

  • byte<1> fixed 0x01 value.

Public key response

  • byte<1> fixed 0x01 value.

  • byte public key data.

RSA encrypted password

  • byte<256> RSA encrypted password.

RSA encrypted value of XOR(password, seed) using server public key (RSA_PKCS1_OAEP_PADDING).

This page is licensed: CC BY-SA / Gnu FDL