- From: Scott Lawrence <lawrence@agranat.com>
- Date: Mon, 03 Aug 1998 21:20:32 +0000
- To: Paul Leach <paulle@microsoft.com>
- Cc: HTTP Working Group <http-wg@cuckoo.hpl.hp.com>
Paul Leach wrote: > I think that absence of cnonce should be illegal if qop=auth or > qop=auth-int is selected by the client; if the client really _demands_ > to be totally braindead, it can send a constant as its cnonce. I'm also happy with that solution. -- Scott Lawrence Consulting Engineer <lawrence@agranat.com> Agranat Systems, Inc. Embedded Web Technology http://www.agranat.com/
Received on Monday, 3 August 1998 14:22:37 UTC