>> SSL isn't authentication. The name even says so. > >You can do authentication with SSL. There is nothing wrong with that. Some >apps do use SSL authentication. SSL is not _just_ anonymous encryption.
While that is true, let's be realistic; nearly all of the uses of SSL today _are_ anonymous encryption, and "SSL authentication" means in practice you're sending your plaintext username/password over the anonymously- encrypted SSL channel. Sure, you can do client certificates, but almost nobody does. --Ken _______________________________________________ OpenAFS-devel mailing list [EMAIL PROTECTED] https://lists.openafs.org/mailman/listinfo/openafs-devel
