[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)

To: Juha Heinanen <jh@lohi.eng.song.fi>
Subject: Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)
From: Michael Thomas <mat@cisco.com>
Date: Fri, 3 Jan 2003 10:41:35 -0800 (PST)
Cc: Michael Thomas <mat@cisco.com>, Robert Sparks <rsparks@dynamicsoft.com>, Jonathan Rosenberg <jdrosen@dynamicsoft.com>, Cullen Jennings <fluffy@cisco.com>, sip@ietf.org
In-reply-to: <15889.35402.270711.303036@lohi.eng.song.fi>
List-help: <mailto:sip-request@ietf.org?subject=help>
List-id: Session Initiation Protocol <sip.ietf.org>
List-post: <mailto:sip@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/sip>,<mailto:sip-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/sip>,<mailto:sip-request@ietf.org?subject=unsubscribe>
References: <004401c2a85e$99855700$618d6b80@amer.cisco.com><3E0375E7.1080608@dynamicsoft.com><1040415671.949.161.camel@RjS.localdomain><15888.48291.700746.59246@thomasm-u1.cisco.com><15889.35402.270711.303036@lohi.eng.song.fi>
Sender: sip-admin@ietf.org

Juha Heinanen writes:
 > Michael Thomas writes:
 > 
 >  > The problem is that AAA's expect either a CHAP or
 >  > PAP formated authenticator. Digest, while it
 >  > doesn't chip the cleartext password ain't the same
 >  > format so you have a problem. Basic allows you to
 >  > hack up an authenticator at the proxy. Maybe
 >  > EAP+digest is our friend. Or maybe not.
 > 
 > what is wrong with draft-sterman-aaa-sip-00.txt?  we use it with digets
 > authentication without any problems.  leading radius servers support it
 > as well as all good sip proxies.

   Well, it seems to be expried for one... is the jist
   that AAA's have been hacked to deal with digest auth
   types directly (or, say, as an EAP type)? If
   so, that's certainly a possibility, and would
   have the obvious benefit of being useable for
   the web as well. 

       Mike
_______________________________________________
Sip mailing list  https://www1.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors@cs.columbia.edu for questions on current sip
Use sipping@ietf.org for new developments on the application of sip

Follow-Ups:
- Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)
  - From: jh

References:
- [Sip] Enrollment in SIP services (and should we undeprecate basic auth)
  - From: Cullen Jennings
- Re: [Sip] Enrollment in SIP services (and should we undeprecate basicauth)
  - From: Jonathan Rosenberg
- Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)
  - From: Robert Sparks
- Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)
  - From: Michael Thomas
- Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)
  - From: Juha Heinanen

Prev by Date: RE: [Sip] INFO considered harmful
Next by Date: Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)
Previous by thread: Re: [Sip] A simple query...
Next by thread: Re: [Sip] Enrollment in SIP services (and should we undeprecatebasic auth)
Index(es):
- Date
- Thread