[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [idn] stringprep: PRI #29

To: Simon Josefsson <jas@extundo.com>
Subject: Re: [idn] stringprep: PRI #29
From: Erik van der Poel <erik@vanderpoel.org>
Date: Sat, 19 Mar 2005 22:02:46 -0800
Cc: idn@ops.ietf.org
In-reply-to: <423CD9DC.5080401@vanderpoel.org>
References: <42322CE2.4040509@vanderpoel.org> <4232B2FD.1080104@vanderpoel.org> <4232BA56.5090001@vanderpoel.org> <iluk6odazwb.fsf@latte.josefsson.org> <00e801c528a8$99ad37d0$72703009@sanjose.ibm.com> <ilull8qb5n5.fsf@latte.josefsson.org> <42367B63.6080300@vanderpoel.org> <4237450A.9010901@v.loewis.de> <423754F3.50405@vanderpoel.org> <ilumzt47ezc.fsf@latte.josefsson.org> <20050316091126.GA24254~@nicemice.net> <iluzmx36h6t.fsf@latte.josefsson.org> <423CD9DC.5080401@vanderpoel.org>
User-agent: Mozilla Thunderbird 1.0 (X11/20041206)

Keep in mind that Unicode may add new characters in the future that may also be affected.

New characters are not recognized by old implementations, so they are less relevant. Sorry about that part. This relatively small mistake in my email should not diminish the overall argument, however.

Both Kerberos and SASL appears to be going to
use the old StringPrep as well, so we will be seeing security critical
infrastructure based on the old interpretation.

SASLprep is for user names and passwords. People sometimes put strange character sequences into passwords to make them harder to guess, but I don't know if apps make it easy to enter the strange sequences affected by PRI #29. Just a thought -- not particularly important.

Erik

References:
- [idn] Unicode categories
  - From: Erik van der Poel <erik@vanderpoel.org>
- [idn] Re: Unicode categories
  - From: Erik van der Poel <erik@vanderpoel.org>
- [idn] stability
  - From: Erik van der Poel <erik@vanderpoel.org>
- [idn] Re: stability
  - From: Simon Josefsson <jas@extundo.com>
- Re: [idn] Re: stability
  - From: "Mark Davis" <mark.davis@jtcsv.com>
- [idn] Re: stability
  - From: Simon Josefsson <jas@extundo.com>
- Re: [idn] Re: stability
  - From: Erik van der Poel <erik@vanderpoel.org>
- Re: [idn] Re: stability
  - From: "Martin v. Löwis" <martin@v.loewis.de>
- Re: [idn] Re: stability
  - From: Erik van der Poel <erik@vanderpoel.org>
- [idn] Re: stability
  - From: Simon Josefsson <jas@extundo.com>
- Re: [idn] Re: stability
  - From: "Adam M. Costello" <idn.amc+0@nicemice.net.RemoveThisWord>
- [idn] Re: stability
  - From: Simon Josefsson <jas@extundo.com>
- [idn] stringprep: PRI #29
  - From: Erik van der Poel <erik@vanderpoel.org>

Prev by Date: [idn] stringprep: PRI #29
Next by Date: [idn] Re: stringprep: PRI #29
Previous by thread: [idn] stringprep: PRI #29
Next by thread: [idn] Re: stringprep: PRI #29
Index(es):
- Date
- Thread