I use JML in an Android app. Whenever someone with the special char & in his password (e.g. password: password&) tries to login, the following exception gets thrown:
net.sf.jml.exception.LoginException: Login Failed, error making ticket!
at net.sf.jml.protocol.incoming.IncomingUSR$1.run(IncomingUSR.java:294)