>> or to remove it entirely, because I don't think it's >> a best current practice for secure authentication. >> > Personally, I don't think removing it is going to be a service to the > community, because this is the current practice, even if it is not the > best one.
Since nothing's referencing this specification yet anyway, why not outline what people should do, rather than what they are doing? A previous note mentioned the fact that DNs are hierarchical paths into a directory. This, of course, is not true; X.500 does not exist as a global/going concern, so DNs are in fact misleading in this context. Let's stop pretending otherwise. -- Scott _______________________________________________ certid mailing list [email protected] https://www.ietf.org/mailman/listinfo/certid
