Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
ZOOKEEPER-1112: Do not specify QOP for the SASL server
The explicit QOP setting had been added with a comment specifying that Sasl.QOP="auth" was not set by the 1.6 JRE. More recent JREs, such as 1.8, properly set QOP to "auth" by default, and both Cyrus SASL and Perl's Authen::SASL have been verified to be okay with it. The patch also included 'auth-conf' and 'auth-int' in the preferences list; the reason for that is unclear. It also seems incorrect, as the wire protocol does not provide checksums nor encryption. (The plan is to carry everything over TLS anyway; perhaps QOP should be set to that triple when TLS is active?) apache#1054 (comment)
- Loading branch information