[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: authmeth: removal of DIGEST-MD5
Howard Chu writes:
>Roger Harrison wrote:
>> I would like to replace this reference with DIGEST-MD5 with another
>> mechanism (it does not need to be normative) that would not disclose the
>> password to the server. Suggestions?
>
> GSSAPI would probably be the next most recognizable choice. Just off the
> top of my head.
I forgot about that one. My impresson was that there has been a lot of
hype but not yet that much deployment, but I may be badly out of date.
Or maybe DIGEST-MD5 deployment is bad enough that GSSAPI competes well
anyway?
--
Hallvard