Re: IPP> Re: PRO - Issue 32: Use of Basic & Digest Authentication

Michael Sweet (mike@easysw.com)
Sat, 10 Apr 1999 20:01:00 -0400

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Hastings, Tom N: "IPP> MOD - Latest Model (990409) .pdf version posted"
• Previous message: Larry Masinter: "RE: IPP> Re: PRO - Issue 32: Use of Basic & Digest Authentication"

Larry Masinter wrote:
> ...
> No, RFC 2069 Digest is more secure than Basic because it doesn't
> require sending the password in the clear.

Without auth-int you can spoof authorization with varying degrees of
ease. Sure, you won't get the original password, but without auth-int
you don't need it!

-- 
______________________________________________________________________
Michael Sweet, Easy Software Products                  mike@easysw.com
Printing Software for UNIX                       http://www.easysw.com

• Next message: Hastings, Tom N: "IPP> MOD - Latest Model (990409) .pdf version posted"
• Previous message: Larry Masinter: "RE: IPP> Re: PRO - Issue 32: Use of Basic & Digest Authentication"

Comments are owned by the poster. All other material is Copyright © 2001-2024 The Printer Working Group. All rights reserved. IPP Everywhere, the IPP Everywhere logo, and the PWG logo are trademarks of the IEEE-ISTO.
About the PWG · Privacy Policy · PWG Webmaster