[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: draft minutes from Chicago meeting

Phil,

Think about it, how will you implement a multi-server domain?

With CRAM-MD5 you have to configure the password for users on each server.
That may be fine for a few servers and a few non-anonymous users, but it
does not scale when you implement hundreds of servers and have millions of
users that require strong authentication.

Hence, if you *only* mandate CRAM-MD5, you will only cater to the small
installations.  That was the reason for my question.

Cheers,               ....Erik.

------------------------------------
Erik Skovgaard
GeoTrain Corp.
LDAP/X.500 Training and Consulting
http://www.geotrain.com

At 15:40 01/10/98 +0100, Phil Pinkerton wrote:
>
>
>
>>Phil,
>>
>>So you propose only supporting the small directory environments?
>>
>
>
>Not at all.  But I fail to understand what the size of a directory
>deployment, be it single server, distributed, or replicated servers has to
>do with mandating a server-side SASL authentication mechanism primarily for
>use by clients - I'm sure someone will explain.  Maybe this view is a bit
>simplistic, but, in my opinion, some of the debate taking place has merely
>been putting hurdles in the way of progress on this topic.
>
>This is difinitely my final comment!
>
>Regards, Phil
>
>
>
>