On Sun, 2011-11-27 at 12:34 +0100, Petite Abeille wrote:
> On Nov 27, 2011, at 11:57 AM, Petite Abeille wrote:
>
> > Is there some test suites out there to exercise various aspect of the protocol?
>
> I found some references to something called "ProtoVer Sample IMAP testsuite":
>
> http://www.securityfocus.com/archive/1/426580
It says it's only for non-authenticated state. And it was announced in
bugtraq list. So it's probably just a bunch of tests that try to break
the server. Like:
* Try that {4294967295} and {2147483647} literals won't cause buffer
overflows (this bug was in many IMAP servers and clients)
* Try various sized usernames and passwords
* Try different kinds of characters in usernames and passwords, such as
<'> <"> <\> <tab> etc.
* Try various sized command tags, names and other parameters
I guess such an automated tester would be nice. Also would be nice to
have a tester that generates "mails from hell" and sees how long server
takes to process them.