Richard Levitte - VMS Whacker wrote:
>
> michael> Again: The only reference to an attribute type is the OID!
>
> I know that. Unfortunately, there are applications out there that
> attempt to use the textual representation of a DN. One perfect
> example is LDAP anytime you search for anything (at least, I'm told
> there are implementations that do not know how to handle DNs with OIDs
> for names).
A correct LDAP implementation should be able to convert RFC2253
DN-strings (e.g. user's input) to an ASN.1 structure representing
attribute types with OIDs. If the strings used for an attribute type
(a matter of local configuration) are not unique it should simply
fail. If the DN is displayed the ASN.1 structure is displayed
according to RFC2253.
I do not claim that there is currently any LDAP implementation out
there really doing it correctly... ;-)
Ciao, Michael.
______________________________________________________________________
OpenSSL Project http://www.openssl.org
Development Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
