IPP> Re: PRO - Issue 32: Use of Basic & Digest Authentication

IPP> Re: PRO - Issue 32: Use of Basic & Digest Authentication

IPP> Re: PRO - Issue 32: Use of Basic & Digest Authentication

Michael Sweet mike at easysw.com
Sat Apr 10 20:01:00 EDT 1999


Larry Masinter wrote:
> ...
> No, RFC 2069 Digest is more secure than Basic because it doesn't
> require sending the password in the clear.

Without auth-int you can spoof authorization with varying degrees of
ease.  Sure, you won't get the original password, but without auth-int
you don't need it!

-- 
______________________________________________________________________
Michael Sweet, Easy Software Products                  mike at easysw.com
Printing Software for UNIX                       http://www.easysw.com



More information about the Ipp mailing list