[Date Prev][Date Next]
Re: Simple+TLS as mandatory-to-implement (RE: Issues with current authmeth draft.)
At 09:43 PM 5/13/2003, Mark Ennis wrote:
>With regards to an alternative mandatory-to-implement authentication mechanism which is more secure than using cleartext passwords, I would like to see one which allows for distinguished names as one form of the authentication identity, but would be reluctant to support mandatory implementation of startTLS extended operation to achieve this if it can be avoided.
Does your desire to avoiding StartTLS outweigh your desire for
credentials with LDAPDNs? Or does your desire for credentials
with LDAPDNs outweigh your desire to avoid StartTLS?