[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Private email re LDAP and ;binary

To: Christopher Oliva <Chris.Oliva@entrust.com>
Subject: Re: Private email re LDAP and ;binary
From: mcs@netscape.com (Mark C Smith)
Date: Tue, 19 Feb 2002 15:42:36 -0500
Cc: David Chadwick <d.w.chadwick@salford.ac.uk>, Sharon Boeyen <sharon.boeyen@entrust.com>, LDAP BIS <ietf-ldapbis@OpenLDAP.org>
Organization: Netscape Communications Corp.
References: <BFB44293CE13C9419B7AFE7CBC35B9390120D6A4@sottmxs08.entrust.com>
User-agent: Mozilla/5.0 (Windows; U; Windows NT 5.0; en-US; rv:0.9.4) Gecko/20011019 Netscape6/6.2

Christopher Oliva wrote:

I don't believe the suggestion was to eliminate ";binary". I won't speak for David but I believe the suggestion is to make the default encoding for Certificate, Certificate List and Certificate Pair the BER encoding. This means that it would not be necessary to use ";binary" but if it were used, everything will work as expected.

Okay.

I'm glad you mentioned backwards compatibility because this change would enable compatibility with ldapv2 and RFC 2559. When ldapv3 was deployed many systems that were already deployed became broken because of the stringent ";binary" requirement. So in order to truly fix backwards compatibility, the ";binary" rules must be relaxed.

LDAPv2 is dead. Long live LDAPv3. Which is to say, let's not break things again.

This proposed fix would only apply to servers (not clients) and increase interoperability as well as backwards compatibility.

Would the standards advise clients to use ;binary in the AttributeDescription or not? If not, then the proposed change does apply to clients as well as to servers.

-Mark

References:
- RE: Private email re LDAP and ;binary
  - From: Christopher Oliva <Chris.Oliva@entrust.com>

Prev by Date: RE: Private email re LDAP and ;binary
Next by Date: Re: Private email re LDAP and ;binary
Index(es):
- Chronological
- Thread