[Date Prev][Date Next] [Chronological] [Thread] [Top]

userPassword comment

To: ietf-ldapbis@OpenLDAP.org
Subject: userPassword comment
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Mon, 19 May 2003 10:33:18 -0700

draft-ietf-ldapbis-user-schema should say that as userPassword
syntax is octet string and has octetExactMatch equality matching,
that applications SHOULD prepare textual strings used as passwords
before storing them in the directory to improve the likelihood
that passwords work as expected.   To prepare a textual string,
the application MUST transcode to Unicode, apply SASLprep, and
transfer using UTF-8.

This should be applied to simple bind's password field as well.

Kurt

Follow-Ups:
- Re: userPassword comment
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>

Prev by Date: Re: IETF ldapbis WG LastCall:draft-ietf-ldapbis-user-schema-05.txt
Next by Date: Re: userPassword comment
Index(es):
- Chronological
- Thread