httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Brian Behlendorf <br...@organic.com>
Subject Re: I-D ACTION:draft-ietf-http-authentication-00.txt (fwd)
Date Mon, 01 Dec 1997 19:45:35 GMT
At 10:48 AM 12/1/97 -0700, Marc Slemko wrote:
>I am amazed.  Actual work on authentication?  No..... it coudln't be.

There's been a stable digest auth draft in the IETF for well over 2 years
now.  We've got a module in the core distribution which implements it.
Even back then it was fairly well vetted.  Yet neither browser vender
deigned it worth 20 minutes of work to implement (okay, I'm being
facetious, it's probably more like 2 hours).  Marc's exactly right, they
are far more interested in pushing basic auth over SSL or client certs than
in any other improved auth scheme.

	Brian

 
--=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=--
"it's a big world, with lots of records to play." - sig   brian@organic.com

Mime
View raw message