[NNTP] Re: Comments on draft-ietf-nntp-tls-nntp-05.txt
Ken Murchison
ken at oceana.com
Wed May 25 13:27:52 PDT 2005
Charles Lindsey wrote:
> In <42937D2E.8050507 at oceana.com> Ken Murchison <ken at oceana.com> writes:
>
>
>>Unless someone vigorously objects, I think I'm going to remove any
>>mention of down-negotiation from the draft. I will be drafting an
>>update to the expired PASSDSS SASL mech soon, which would hopefully be
>>the best alternative to TLS+PLAIN.
>
>
> I think it should remain. Although the whole business of authenticating
> and then down-negotiation is a kludge, I think it is a necessary kludge
> for the time being, and therefore should be described correctly.
I don't think it needs explicit mention in this document, since its
something already allowed and discussed in RFC 2246.
I'd rather not document a temporary hack that implementors can figure
out on their own anyways. Looking back on it, I'm sorry I ever thought
of and mentioned down-negotiation of the cipher.
--
Kenneth Murchison Oceana Matrix Ltd.
Software Engineer 21 Princeton Place
716-662-8973 x26 Orchard Park, NY 14127
--PGP Public Key-- http://www.oceana.com/~ken/ksm.pgp
More information about the ietf-nntp
mailing list