Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments

To: Jeffrey Hutzelman <jhutz%cmu.edu@localhost>
Subject: Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments
From: David Leonard <David.Leonard%quest.com@localhost>
Date: Fri, 26 Aug 2005 11:37:51 +1000 (EST)

On Fri, 26 Aug 2005, David Leonard wrote:

> I propose instead for 7.1 that a client system SHOULD first construct
> targ_name = "host@"+hostname (without modifying the user-supplied
> hostname) and try GSS. Then, if the GSS fails [?], the application
> SHOULD try canonicalizing the hostname and construct targ_name2 =
> "host@"+canonicalize(hostname) and try that instead (if it's a
> different string).

and by 'canonicalize' i mean securely canonicalize, and only if such
secure canonicalization is available. (i.e. as discussed)

d
--
David Leonard
Vintela Resource Central software engineer
Quest Software; Brisbane, Australia; www.quest.com
Phone: (US) +1 801 655 2755 
       (AU) +61 7 3023 5133

References:
- Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments
  - From: Jeffrey Hutzelman
- Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments
  - From: David Leonard
- Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments
  - From: Jeffrey Hutzelman
- Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments
  - From: Bill Sommerfeld
- Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments
  - From: Sam Hartman
- Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments
  - From: Jeffrey Hutzelman
- Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments
  - From: David Leonard

Prev by Date: Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments
Next by Date: Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments
Previous by Thread: Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments
Next by Thread: Re: [David Leonard] draft-ietf-secsh-gsskeyex-09.txt comments
Indexes:

Home | Main Index | Thread Index | Old Index