Interesting because most clients used Digest-MD5, so what do we use now? Cram-MD5? Or is there some other newfangled method out there?
-----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Peter Saint-Andre Sent: 10 September 2007 08:41 PM To: standards@xmpp.org Subject: [Standards] [Fwd: I-D Action:draft-melnikov-digest-to-historic-00.txt] FYI re rfc3920bis... -------- Original Message -------- A New Internet-Draft is available from the on-line Internet-Drafts directories. Title : Moving DIGEST-MD5 to Historic Author(s) : A. Melnikov Filename : draft-melnikov-digest-to-historic-00.txt Pages : 7 Date : 2007-09-08 This memo documents problems with the DIGEST-MD5 Simple Authentication and Security Layer (SASL) mechanism, as specified in RFC 2831. This document recommends DIGEST-MD5 to be marked as OBSOLETE in the IANA Registry of SASL mechanims and RFC 2831 to be moved to Historic status.Note A revised version of this draft document will be submitted to the RFC editor as a Proposed Standard for the Internet Community. Discussion and suggestions for improvement are requested, and should be sent to [EMAIL PROTECTED] A URL for this Internet-Draft is: http://www.ietf.org/internet-drafts/draft-melnikov-digest-to-historic-00.txt