[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[idn] stringprep mailing list

To: Simon Josefsson <jas@extundo.com>
Subject: [idn] stringprep mailing list
From: Erik van der Poel <erik@vanderpoel.org>
Date: Wed, 16 Mar 2005 11:22:45 -0800
Cc: IETF idn working group <idn@ops.ietf.org>, Kurt Zeilenga <Kurt@OpenLDAP.org>, Jeffrey Altman <jaltman@iamx.com>, Jeffrey Altman <jaltman@columbia.edu>
In-reply-to: <iluzmx36h6t.fsf@latte.josefsson.org>
References: <42322CE2.4040509@vanderpoel.org> <4232B2FD.1080104@vanderpoel.org> <4232BA56.5090001@vanderpoel.org> <iluk6odazwb.fsf@latte.josefsson.org> <00e801c528a8$99ad37d0$72703009@sanjose.ibm.com> <ilull8qb5n5.fsf@latte.josefsson.org> <42367B63.6080300@vanderpoel.org> <4237450A.9010901@v.loewis.de> <423754F3.50405@vanderpoel.org> <ilumzt47ezc.fsf@latte.josefsson.org> <20050316091126.GA24254~@nicemice.net> <iluzmx36h6t.fsf@latte.josefsson.org>
User-agent: Mozilla Thunderbird 1.0 (X11/20041206)

Simon Josefsson wrote:

One way is to incorporate the PR-29 fix, declare the earlier attempt
as buggy, and re-cycle at PROPOSED.  I suspect you prefer that way?  I
am hesitant about that approach, because we have already deployed the
old RFC and it is not clear what problems there will be in mixing the
old and the new code.  Both Kerberos and SASL appears to be going to
use the old StringPrep as well, so we will be seeing security critical
infrastructure based on the old interpretation.

Even if Stringprep is not updated to address the PRI #29 problem, we must at least let the other Stringprep profile authors know about the situation, so that they can make their own decisions for their areas. The IDN mailing list seems to be dedicated to IDNA issues (including Nameprep). Is there a Stringprep mailing list?

http://www.unicode.org/review/pr-29.html
http://www.imc.org/idn/mail-archive/maillist.html

The IANA Stringprep registry has not been updated to point to the new SASLprep RFC:

http://www.iana.org/assignments/stringprep-profiles
ftp://ftp.rfc-editor.org/in-notes/rfc4013.txt

I am Cc'ing the author of RFC 4013 (Kurt Zeilenga) on this email.

I am also Cc'ing the author of the expired Internet Draft of the Kerberos profile of Stringprep (Jeffrey Altman). Kurt and Jeffrey may wish to take a look at the various things I've included URIs for in this email.

http://josefsson.org/cgi-bin/rfcmarkup?url=http://josefsson.org/cgi-bin/viewcvs.cgi/*checkout*/libidn/doc/specifications/draft-ietf-krb-wg-utf8-profile-01.txt

Erik

Follow-Ups:
- [idn] Re: stringprep mailing list
  - From: Simon Josefsson <jas@extundo.com>

References:
- [idn] Unicode categories
  - From: Erik van der Poel <erik@vanderpoel.org>
- [idn] Re: Unicode categories
  - From: Erik van der Poel <erik@vanderpoel.org>
- [idn] stability
  - From: Erik van der Poel <erik@vanderpoel.org>
- [idn] Re: stability
  - From: Simon Josefsson <jas@extundo.com>
- Re: [idn] Re: stability
  - From: "Mark Davis" <mark.davis@jtcsv.com>
- [idn] Re: stability
  - From: Simon Josefsson <jas@extundo.com>
- Re: [idn] Re: stability
  - From: Erik van der Poel <erik@vanderpoel.org>
- Re: [idn] Re: stability
  - From: "Martin v. Löwis" <martin@v.loewis.de>
- Re: [idn] Re: stability
  - From: Erik van der Poel <erik@vanderpoel.org>
- [idn] Re: stability
  - From: Simon Josefsson <jas@extundo.com>
- Re: [idn] Re: stability
  - From: "Adam M. Costello" <idn.amc+0@nicemice.net.RemoveThisWord>
- [idn] Re: stability
  - From: Simon Josefsson <jas@extundo.com>

Prev by Date: Re: [idn] Re: stability
Next by Date: [idn] Re: stringprep mailing list
Previous by thread: [idn] Re: stability
Next by thread: [idn] Re: stringprep mailing list
Index(es):
- Date
- Thread