[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: authPassword (RFC 3112) implemented?

To: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>
Subject: Re: authPassword (RFC 3112) implemented?
From: Kurt Zeilenga <kurt@OpenLDAP.org>
Date: Sun, 15 Jul 2007 07:48:33 -0700
Cc: Gavin Henry <ghenry@suretecsystems.com>, ando@sys-net.it, openldap-devel@OpenLDAP.org
In-reply-to: <hbf.20070715x4o9@bombur.uio.no>
References: <55715.212.159.59.85.1184453991.squirrel@webmail.suretecsystems.com> <1072.151.24.82.206.1184495187.squirrel@151.24.82.206> <hbf.20070715x4o9@bombur.uio.no>


On Jul 15, 2007, at 6:59 AM, Hallvard B Furuseth wrote:

Pierangelo Masarati writes:
AFAIK, the attribute and so is recognized, but it's not implemented
(nor won't, as it is no longer needed).
If it's no longer needed - what has changed?

The technical needs haven't changed. Folks now seem to be finally getting that they have a choice between: a) stronger (than PLAIN) authentication mechanisms (e.g., DIGEST-MD5, SCRAM, YAP, SRP, etc.) (and a single clear text password) or b) PLAIN.

I thought it was invented because the existing scheme of '{hash method}' in userPassword broke the LDAP standard. Which it still does. Not that six years of none of us bothering to implement RFC 3112 gives much hope of that changing.

--
Regards,
Hallvard

Follow-Ups:
- Re: authPassword (RFC 3112) implemented?
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>

References:
- authPassword (RFC 3112) implemented?
  - From: "Gavin Henry" <ghenry@suretecsystems.com>
- Re: authPassword (RFC 3112) implemented?
  - From: "Pierangelo Masarati" <ando@sys-net.it>
- Re: authPassword (RFC 3112) implemented?
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>

Prev by Date: Re: authPassword (RFC 3112) implemented?
Next by Date: Re: authPassword (RFC 3112) implemented?
Index(es):
- Chronological
- Thread