[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)

To: Robert Sparks <rsparks@dynamicsoft.com>
Subject: Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)
From: Michael Thomas <mat@cisco.com>
Date: Mon, 30 Dec 2002 13:37:39 -0800 (PST)
Cc: Jonathan Rosenberg <jdrosen@dynamicsoft.com>, Cullen Jennings <fluffy@cisco.com>, sip@ietf.org
In-reply-to: <1040415671.949.161.camel@RjS.localdomain>
List-help: <mailto:sip-request@ietf.org?subject=help>
List-id: Session Initiation Protocol <sip.ietf.org>
List-post: <mailto:sip@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/sip>,<mailto:sip-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/sip>,<mailto:sip-request@ietf.org?subject=unsubscribe>
References: <004401c2a85e$99855700$618d6b80@amer.cisco.com><3E0375E7.1080608@dynamicsoft.com><1040415671.949.161.camel@RjS.localdomain>
Sender: sip-admin@ietf.org

One comment:

Robert Sparks writes:
 > I don't understand the last statement. A system that accepts digest
 > credentials is not required to keep its local knowledge of the password
 > in the hash recommended in 2617.

The problem is that AAA's expect either a CHAP or
PAP formated authenticator. Digest, while it
doesn't chip the cleartext password ain't the same
format so you have a problem. Basic allows you to
hack up an authenticator at the proxy. Maybe
EAP+digest is our friend. Or maybe not.

	Mike
_______________________________________________
Sip mailing list  https://www1.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors@cs.columbia.edu for questions on current sip
Use sipping@ietf.org for new developments on the application of sip

Follow-Ups:
- Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)
  - From: Juha Heinanen

References:
- [Sip] Enrollment in SIP services (and should we undeprecate basic auth)
  - From: Cullen Jennings
- Re: [Sip] Enrollment in SIP services (and should we undeprecate basicauth)
  - From: Jonathan Rosenberg
- Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)
  - From: Robert Sparks

Prev by Date: Re: [Sip] Enrollment in SIP services (and should we undeprecate basicauth)
Next by Date: Re: [Sip] INFO considered harmful
Previous by thread: Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)
Next by thread: Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)
Index(es):
- Date
- Thread