[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Schema: encrypted 8-bit userPassword and SASLprep

To: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
Subject: Re: Schema: encrypted 8-bit userPassword and SASLprep
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Fri, 12 Sep 2003 09:46:00 -0700
Cc: John McMeeking <jmcmeek@us.ibm.com>, ietf-ldapbis@OpenLDAP.org, Michael Ströder <michael@stroeder.com>
In-reply-to: <HBF.20030912r226@bombur.uio.no>
References: <OFF1F44696.D75766D6-ON86256D9F.004C9A76-86256D9F.004F73BC@us.ibm.com> <OFF1F44696.D75766D6-ON86256D9F.004C9A76-86256D9F.004F73BC@us.ibm.com>

At 08:44 AM 9/12/2003, Hallvard B Furuseth wrote:
>     To improve matching, applications SHOULD prepare textual strings
>     used as passwords. Applications which prepare textural strings used
>     as password are REQUIRED to prepare them by transcoding the string
>     to [Unicode], apply [SASLprep], and encode as UTF-8.

s/application/client/

>BTW, it's unclear whether or not the above text only applies to simple
>auth, since the previous sentence is
>
>     The simple form of an AuthenticationChoice specifies a simple
>     password to be used for authentication.
>
>That should be clarified.

I concur.  The statement above applies to the simple authentication method.
Other methods have their own requirements as stated in their technical
specification.

Kurt

References:
- Re: Schema: encrypted 8-bit userPassword and SASLprep
  - From: John McMeeking <jmcmeek@us.ibm.com>
- Re: Schema: encrypted 8-bit userPassword and SASLprep
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>

Prev by Date: Re: Schema: encrypted 8-bit userPassword and SASLprep
Next by Date: Schema nitpicks
Index(es):
- Chronological
- Thread