Nico Williams wrote: > On Wed, Oct 19, 2011 at 7:24 PM, Sam Hartman > Well, you stated that RADIUS servers can't be expected to do more than > byte-wise comparison. Why is that?
It's what hey do today. It's the easiest thing to do. Normalization may require information (locale, etc.) which is not available in the protocol. > And if that really is true then > you'll need to send normalized strings. Pretty much. My take is that normalization is out of scope for both the RADIUS server and for the EAP peer. They both rely on some user-facing UI to obtain the user credentials. That UI should perform normalization, as it has information no one else has. Requiring the EAP peer to normalize the data is for me just like asking an intermediate RADIUS proxy to normalize the data. It just doesn't make sense. Alan DeKok. _______________________________________________ abfab mailing list [email protected] https://www.ietf.org/mailman/listinfo/abfab
