Added atom-protocol to the Cc: line Robert Sayre <[EMAIL PROTECTED]> wrote: > On 7/17/06, Eric Rescorla <[EMAIL PROTECTED]> wrote: > > I'm not familiar with what HTTP implementations do, but I'll note > > that SIP implementations will do auth-int. > > > > Mozilla doesn't do it. Apache (mod_auth_digest) doesn't do it. Opera > does. I don't know what MS libraries do these days.
Right. My point was merely that it's doable as a matter of programming. > > Feel free to take this point up with the IESG. I doubt you'll find > > them very sympathetic, however. > > Well, I'd like the document to reflect reality, but I suspect that > will be no match for the IESG rules in combination with some WG > members that want Basic+TLS enshrined in the document because that is > what they are going to deploy. I'm not arguing for any particular outcome. I'm merely informing you of my understanding of the rules of the game. -Ekr