Re: Auth method negotiation

To: Paul Koning <ni1d@arrl.net>
Subject: Re: Auth method negotiation
From: Bill Studenmund <wrstuden@wasabisystems.com>
Date: Fri, 21 Jun 2002 15:43:01 -0700 (PDT)
Cc: <chirag.wighe@windriver.com>, <ips@ece.cmu.edu>
Content-Type: TEXT/PLAIN; charset=US-ASCII
In-Reply-To: <15635.41158.758000.86436@gargle.gargle.HOWL>
Sender: owner-ips@ece.cmu.edu

On Fri, 21 Jun 2002, Paul Koning wrote:

> Excerpt of message (sent 21 June 2002) by Bill Studenmund:
> > I'm not sure. What does everyone else think? If the T bits indicate that
> > both sides are fine with skipping authentication, does AuthMethods matter?
>
> I would tend to think of it as a protocol error.  If one part of the
> message indicates that you're insisting on authentication, and another
> part sasys that you are insisting on not doing authentication, you
> must be confused, right?

Uhm, yeah. Makes sense.

But do we say that if you don't want to authenticate, you MUST choose None
as your one AuthMethod? A quick scan of draft 13 (searching occurences of
AuthMethod) didn't indicate so. So it's a laziness within the spec.

Take care,

Bill

Follow-Ups:
- Re: Auth method negotiation
  - From: Paul Koning <ni1d@arrl.net>

References:
- Re: Auth method negotiation
  - From: Paul Koning <ni1d@arrl.net>

Prev by Date: Re: Auth method negotiation
Next by Date: Re: Auth method negotiation
Prev by thread: Re: Auth method negotiation
Next by thread: Re: Auth method negotiation
Index(es):
- Date
- Thread

Home

Last updated: Sat Jun 22 15:18:47 2002
10944 messages in chronological order