Overview
Artifact ID: | 32ab783d42a0e7a6672ca19d1880ad42c0aac4ea |
---|---|
Ticket: | 1cc32b469555cc025a4cae3d181d5c6270c90073
Support SCRAM-SHA-1 and perhaps generic SCRAM |
User & Date: | anonymous 2015-01-13 12:31:51 |
Changes
- assignee changed to: "nobody"
- closer changed to: "nobody"
- cmimetype changed to: "text/x-fossil-wiki"
- comment changed to:
Please implement SCRAM in the SASL module. It implements challenge-response authentication and improves upon the CRAM-MD5 and DIGEST-MD5 methods. It can use an arbitrary hash function, although currently only SHA-1 seems to be widely supported (but since SHA-1 is broken, it might be a good idea to implement SCRAM-SHA-256 at the same time, or perhaps add a parameter through which the hash function can be selected). It is defined in [http://tools.ietf.org/html/rfc5802|RFC 5802]. [http://tools.ietf.org/html/rfc5802#page-27|Appendices A and B] of the RFC explain in detail how it improves upon the previous methods.
- foundin changed to: "1.3"
- is_private changed to: "0"
- login: "anonymous"
- priority changed to: "5 Medium"
- resolution changed to: "None"
- severity changed to: "Minor"
- status changed to: "Open"
- submitter changed to: "anonymous"
- subsystem changed to: "sasl"
- title changed to: "Support SCRAM-SHA-1 and perhaps generic SCRAM"
- type changed to: "RFE"