re: question on campus computer security

Lucky Green (shamrock@netcom.com)
Tue, 19 May 1998 12:08:12 -0700 (PDT)

• Next message: Anonymous: "Re: Another Test on RSA Keys"
• Previous message: Greg Noel: "re: question on campus computer security"
• In reply to: James Black: "re: question on campus computer security"
• Next in thread: David Jablon: "re: question on campus computer security"

On Tue, 19 May 1998, Greg Noel wrote:

> On Tue, 19 May 1998, James Black wrote:
> > The current project that needs some security would be having people
> > send passwords over the Internet (needed for LDAP), ...
>
> If the major motivator is to avoid sending passwords in the clear, one
> possibility is Stanford's SRP (http://jafar.stanford.edu/srp). You'd
> still have to type a password, but the authentication process doesn't put
> it on the wire.

Why not just use SSL-LDAP? I don't have the RFC (draft?) handy. Hmm, here
is a pointer: http://www.dante.net/np/ds/id/draft-howes-ldap-api-00.txt

-- Lucky Green <mailto:shamrock@netcom.com> PGP encrypted mail preferred

• Next message: Anonymous: "Re: Another Test on RSA Keys"
• Previous message: Greg Noel: "re: question on campus computer security"
• In reply to: James Black: "re: question on campus computer security"
• Next in thread: David Jablon: "re: question on campus computer security"