[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: userPassword question

To: Chris Newman <Chris.Newman@INNOSOFT.COM>, Mark Smith <mcs@netscape.com>
Subject: Re: userPassword question
From: Suresh Krishnan <sureshk@cisco.com>
Date: Wed, 05 Aug 1998 13:43:48 +0530
Cc: 'IETF LDAP Extensions WG' <ietf-ldapext@netscape.com>
Resent-date: Wed, 05 Aug 1998 01:16:36 -0700 (PDT)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"3wX8C1.0.Hd6.ZJ1or"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

Hi Chris,

>All clients and servers MUST implement a fast authentication mechanism
>which does not send the password in the clear and does not use encryption.

If clients should not send a clear-text password and should not use
encryption, how will they send the passwords?

Thanks
Suresh Krishnan

-----Original Message-----
From: Chris Newman <Chris.Newman@innosoft.com>
To: Mark Smith <mcs@netscape.com>
Cc: 'IETF LDAP Extensions WG' <ietf-ldapext@netscape.com>
Date: Thursday, July 30, 1998 5:47 AM
Subject: Re: userPassword question


<snip>

Prev by Date: Re: Authentication Methods for LDAP - last call
Next by Date: Authentication Methods for LDAP - my vote for CRAM-MD5
Index(es):
- Chronological
- Thread