ietf-nntp Re: WG Review: Simple Authentication and Security Layer (sasl)
Andrew Gierth
andrew at erlenstar.demon.co.uk
Mon Dec 9 18:19:44 PST 2002
>>>>> "Ken" == Ken Murchison <ken at oceana.com> writes:
Ken> Yes, this is a well known problem with infrastrctures which are
Ken> based around a plaintext methodology. I guess your alternatives
Ken> are to switch to something like Kereberos
Switching isn't an option - the external auth servers belong to clients,
most of which a) already have to run RADIUS servers and therefore have
a fair chance of being able to handle that and b) wouldn't have a hope in
hell of setting up Kerberos.
Ken> or try resurrecting Newman's DSS effort (or something similar)
Ken> ietf-sasl. If the WG likes the idea, I'll volunteer to write
Ken> the plugin for CMU SASL.
something like that DSS scheme would certainly fit our requirements.
--
Andrew.
More information about the ietf-nntp
mailing list