https://issues.apache.org/bugzilla/show_bug.cgi?id=50028
--- Comment #2 from Mark Tischler <[email protected]> 2010-09-29 17:36:02 EDT --- I wasn't suggesting that you make LDAP work with Digest. I was suggesting that someone come up with a way to allow the password to be encrypted between the browser and the web server before it gets sent to the LDAP server. There must be a way to do this, even if it means creating a completely new mechanism to do it. It is unacceptable to ask users to wrap their applications in SSL, given that SSL incurs performance hits. There ought to be a way for the equivalent of Digest (read: not *actually* Digest) to work with LDAP. That is, it would be nice if the public key encryption worked between the browser and Apache for the password part. Would it be reasonable to re-open this or reassign it so that you or others might be able to suggest ways to do this? -- Configure bugmail: https://issues.apache.org/bugzilla/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
