httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Roy T. Fielding" <field...@avron.ICS.UCI.EDU>
Subject Re: Issues for a beta release...
Date Sun, 16 Apr 1995 06:05:13 GMT
Brian said:

> What about S-HTTP, with hooks to either/both PGP or Terisa's libshttp?  
> Isn't that the long term solution everyone should be working towards? 

Not necessarily.  The last visible draft of SHTTP had more errors in it
than I'd ever want to see in a security draft.  I don't think anything
is a "long term solution" yet.

> Digest authentication is definitely needed - Eric at Spyglass gave us a 
> reference here to code he's written for NCSA's httpd that does that plus 
> the proposed HTTP extension mechanism (roy - is that a part of the 1.1 
> proposal?),

Not yet.  It is too verbose and attempts to override the existing
extension mechanisms inherent in the protocol.


View raw message