[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: SASL profile for FTP?

To: Chris Newman <Chris.Newman@xxxxxxxxxxxx>
Subject: Re: SASL profile for FTP?
From: Marc Horowitz <marc@xxxxxxxxxx>
Date: 06 Oct 1998 21:22:17 -0400
Cc: Alexey Melnikov <mel@xxxxxxx>, ietf-sasl@xxxxxxx
In-reply-to: Chris Newman's message of Tue, 06 Oct 1998 17:47:41 -0700 (PDT)
References: <>
Sender: owner-ietf-sasl@xxxxxxx

Chris Newman <Chris.Newman@xxxxxxxxxxxx> writes:

>> When the FTP security stuff was being debated, John Myers proposed a 5
>> page SASL-based alternative to the 27 page RFC 2228.  Incidentally, the
>> CAT WG (a security area WG) ignored John's proposal.  I suppose one could
>> draw some conclusions from this and the subsequent deployment patterns of
>> RFC 2228.

There's eight implementations of rfc 2228.

SASL is simpler, I admit.  But there were implementations of ftpsec
shipping before SASL was generalized.  Shooting the existing
implementors is poor practice.

Do a SASL profile, and let the market decide.

		Marc

Follow-Ups:
- Re: SASL profile for FTP?
  - From: Alexey Melnikov
- Re: SASL profile for FTP?
  - From: Chris Newman

References:
- Re: SASL profile for FTP?
  - From: Chris Newman

Prev by Date: I-D ACTION:draft-leach-digest-sasl-00.txt (fwd)
Next by Date: Re: Compromise Authentication Proposal
Previous by thread: Re: SASL profile for FTP?
Next by thread: Re: SASL profile for FTP?
Index(es):
- Date
- Thread