On Fri, Dec 20, 2019, at 03:50, Martin Casanova wrote:
> I agree that hashing an empty String to match a not set authinfo is not
> the way to go. We are using [null] values in the db for a not set
> authinfo field. However I think you could argue that semantically and
> empty XML tag is somewhat similar to a not filled db field being [null]
I strongly disagree.
It is the same thing as the difference in an RDBMS when you store "" (the empty
string)
or NULL (the undefined value). Those are two different things, and for good
reason.
<pw/> or <pw></pw> means an empty password, the empty string.
No XML pw node means an undefined password, as the data is just not there, so
unknown.
Like said in other threads, this all shows to me that efforts should be put
into finding now new ways to operate, without domain passwords as they became
useless, instead of trying to fix with various warts the current situation.
--
Patrick Mevzek
[email protected]
_______________________________________________
regext mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/regext
