<?xml version="1.0" encoding="US-ASCII"?>
<testcase>
<info>
<keywords>
POP3
SASL
SASL AUTH NTLM
SASL AUTH PLAIN
SASL DOWNGRADE
RFC1734
RFC5034
</keywords>
</info>

# Server-side
<reply>
<servercmd>
AUTH NTLM PLAIN
REPLY "AUTH NTLM" +
REPLY %b64[NTLMSSP%00%01%00%00%00%06%82%08%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00]b64% + Rubbish
REPLY * -ERR AUTH exchange cancelled by client
REPLY "AUTH PLAIN" +
REPLY %b64[%00user%00secret]b64% +OK Login successful
</servercmd>
<data crlf="yes">
From: me@somewhere
To: fake@nowhere

body

--
  yours sincerely
</data>
</reply>

# Client-side
<client>
<server>
pop3
</server>
<features>
NTLM
SSL
!SSPI
</features>
<name>
POP3 NTLM authentication with SASL downgrade
</name>
<command>
pop3://%HOSTIP:%POP3PORT/%TESTNUMBER -u user:secret
</command>
</client>

# Verify data after the test has been "shot"
<verify>
<protocol crlf="yes">
CAPA
AUTH NTLM
%b64[NTLMSSP%00%01%00%00%00%06%82%08%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00%00]b64%
*
AUTH PLAIN
%b64[%00user%00secret]b64%
RETR %TESTNUMBER
QUIT
</protocol>
</verify>
</testcase>
