httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From guill...@ncsa.uiuc.edu (Stan Guillory)
Subject Re: Digest Authentication
Date Tue, 06 Jun 1995 15:43:42 GMT

Robert, 
  My bad. I thought Brandon was implying that the password could
be determined from the hash value. I agree that a mimic attack
is possible if H(a1) is known, and thus the password file has
to be protected. 
Stan
NCSA


Mime
View raw message