[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

CHAP XAuth draft contradiction?

To: ietf-xauth@xxxxxxxx
Subject: CHAP XAuth draft contradiction?
From: Will Price <wprice@xxxxxxxxxxx>
Date: Thu, 07 Dec 2000 16:36:41 -0800
List-archive: <http://www.vpnc.org/ietf-xauth/mail-archive/>
List-id: <ietf-xauth.vpnc.org>
List-unsubscribe: <mailto:ietf-xauth-request@vpnc.org?body=unsubscribe>
Reply-to: wprice@xxxxxxxxxxx
Sender: owner-ietf-xauth@xxxxxxxxxxxxx

Line 1167 of draft 00 says the RADIUS CHAP hash should proceed as: "(ID+challenge+secret)"

Line 408 of RFC 2138 (RADIUS) says that hash should proceed as: ID+secret+challenge.

We used the interpreation from the XAuth draft, but one of the vendors
we're testing with used the second interpretation.

I have changed our implementation to use RFC 2138's method, but this
should probably be clarified.

-- Will

Will Price, Director of Engineering
PGP Security, Inc.
a division of Network Associates, Inc.

Prev by Date: Call for implementation list XAuth
Next by Date: Encryption bit of Isakmp header
Previous by thread: Call for implementation list XAuth
Next by thread: Encryption bit of Isakmp header
Index(es):
- Date
- Thread