[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Compromise Authentication Proposal

To: IETF LDAP Extensions WG <ietf-ldapext@netscape.com>
Subject: RE: Compromise Authentication Proposal
From: Paul Leach <paulle@microsoft.com>
Date: Mon, 05 Oct 1998 17:02:23 -0700
Resent-date: Mon, 05 Oct 1998 17:02:38 -0700 (PDT)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"wBd1m1.0.Zl6.SuL6s"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

At Chicago, there was conditional concensus about using Digest as the MTI.
It was conditional upon a digest/SASL spec being delivered "in a couple of
weeks". It took a little longer than that, but I believe the precondition
has now been met, and still seems to be relevant.

After a private conversation with Tim Howes, he suggested I "call the
question". So here goes:

Are there any objections to making Digest/SASL the Mandatory-to-Implement
non-plaintext password mechanism? If so, what are they?

Are there any objections to making Digest/SASL the only
Mandatory-to-Implement mechanism? If so, what are they?

Paul

Follow-Ups:
- Re: Compromise Authentication Proposal
  - From: Leif Johansson <leifj@matematik.su.se>
- Re: Compromise Authentication Proposal
  - From: mcs@netscape.com (Mark C Smith)

Prev by Date: Unidentified subject!
Next by Date: Re: Compromise Authentication Proposal
Index(es):
- Chronological
- Thread