I agree with Dave Krystol's position: if a client supports authentication at all, it MUST support Digest. This means that only those supporting authentication must do work, keeping the simplest web clients simple. We have to get passwords in the clear out of use in the Web; naive people tend to put their regular passwords into password fields, not understanding the lack of security. - JimReceived on Monday, 26 August 1996 14:43:42 EDT
This archive was generated by hypermail pre-2.1.9 : Wednesday, 24 September 2003 06:32:08 EDT