At 03:48 PM 7/19/2001, Jim Sermersheim wrote: >My only concern (and it may be unfounded) would be that some applications or API's currently send a single octet NUL when they really mean to send a zero-length value as a DN. Per RFC 2253, that would be an invalid DN. If the DN is not empty, it must contain at least one RDN. I think we should consider any implementation which expects that (or even behaves like that) to be broken.