Ned, do you think an update to 4954 (SMTP Service Extension for
Authentication) plus an update to 4422 (SASL, where AUTH EXTERNAL is
defined) would suffice?
While the issue does affect 4409 (Submit), I'm still not convinced that
the issue needs to be solved in an 4409 update.
Tony
On 5/6/2010 4:20 PM, Ned Freed wrote:
So I will accept an argument that AUTH EXTERNAL provides little value
specifically to SMTP (beyond and explicit protocol indication that the
client certificate was acceptable for SMTP-level authentication to the
server, something that helps the client to produce better end-user
diagnostics), which is why I proposed option 2. But I do consider AUTH
EXTERNAL an important mechanism in general.
Agreed. I personally prefer to have a consistent approach across
protocols,
which would argue for option 1 or 3, not 2, but I don't think the "it
can all
be dealt with in an AUTH EXTERNAL update" idea passes technical muster.
Ned
_______________________________________________
yam mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/yam
