Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and password length
Eliot Lear <lear@lear.ch> Fri, 27 January 2023 11:30 UTC
Return-Path: <lear@lear.ch>
X-Original-To: emu@ietfa.amsl.com
Delivered-To: emu@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7E496C14CE4F for <emu@ietfa.amsl.com>; Fri, 27 Jan 2023 03:30:35 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -7.087
X-Spam-Level:
X-Spam-Status: No, score=-7.087 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, HTML_MESSAGE=0.001, NICE_REPLY_A=-0.001, RCVD_IN_DNSWL_HI=-5, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_PASS=-0.001, T_SPF_HELO_PERMERROR=0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=lear.ch
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Dsykrt-ttGhA for <emu@ietfa.amsl.com>; Fri, 27 Jan 2023 03:30:31 -0800 (PST)
Received: from upstairs.ofcourseimright.com (upstairs.ofcourseimright.com [IPv6:2a00:bd80:aa::2]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id A9342C14F74F for <emu@ietf.org>; Fri, 27 Jan 2023 03:30:29 -0800 (PST)
Authentication-Results: upstairs.ofcourseimright.com; dmarc=none (p=none dis=none) header.from=lear.ch
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=lear.ch; s=upstairs; t=1674819025; bh=CncD3yxCU/12D1t7Rz65FlTp++BzdVzoCvAZs2rceFo=; h=Date:Subject:To:References:From:In-Reply-To:From; b=N5XtThphVe0OL7ucubNy/p7Qji3uZjCvqv+P7qe4qrIwAMVy+sQpqavpUUn0psUor Pr5KI1tsvk8v/J3ogNGzOqfy90ZL74QYqF35M0iMkC9AZSwFG4QgjIAS8wRE4L9uFB dyyqLOUMDMj5hIndEMsm+ORDi4PiJiU7B06KSojI=
Received: from [IPV6:2001:420:c0c0:1011::1] ([IPv6:2001:420:c0c0:1011:0:0:0:1]) (authenticated bits=0) by upstairs.ofcourseimright.com (8.15.2/8.15.2/Debian-22ubuntu3) with ESMTPSA id 30RBUPM5575641 (version=TLSv1.3 cipher=TLS_AES_128_GCM_SHA256 bits=128 verify=NO); Fri, 27 Jan 2023 12:30:25 +0100
Content-Type: multipart/alternative; boundary="------------600Zr6wKJD5KqIrNcuTLKM52"
Message-ID: <159d378b-06f4-cf12-edc1-41dcbcf67541@lear.ch>
Date: Fri, 27 Jan 2023 12:30:23 +0100
MIME-Version: 1.0
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:102.0) Gecko/20100101 Thunderbird/102.6.1
Content-Language: en-US
To: Heikki Vatiainen <hvn@radiatorsoftware.com>, EMU WG <emu@ietf.org>
References: <9A85E1BF-4CBF-4D3F-98F9-A07D496F7759@deployingradius.com> <DB6PR0701MB304746750BFA21068CB8B23489CE9@DB6PR0701MB3047.eurprd07.prod.outlook.com> <CAA7Lko8=kJnqpB-YNFVTs=E0mpCrcOsEpRePvwkGp-h8dDdw9g@mail.gmail.com>
From: Eliot Lear <lear@lear.ch>
In-Reply-To: <CAA7Lko8=kJnqpB-YNFVTs=E0mpCrcOsEpRePvwkGp-h8dDdw9g@mail.gmail.com>
Archived-At: <https://mailarchive.ietf.org/arch/msg/emu/vOtWGb_gb976VLY6dDHdD7Xgsio>
Subject: Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and password length
X-BeenThere: emu@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: "EAP Methods Update \(EMU\)" <emu.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/emu>, <mailto:emu-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/emu/>
List-Post: <mailto:emu@ietf.org>
List-Help: <mailto:emu-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/emu>, <mailto:emu-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 27 Jan 2023 11:30:35 -0000
Hiya, On 27.01.23 12:17, Heikki Vatiainen wrote: > For example, an OTP system could do this: > - Start authentication with username + static password; if ok then > - Server prompts for the next method: Choose 1 for push to mobile app, > 2 for telephone callback, 3 for emergency use pre-printed code. Leave > password empty for the default method (not mandatory: can always > choose one of 1-3). > - The next server response then depends on what was chosen by the user > > The above may need to run as one exchange without any > Intermediate-Result TLV between static password and OTP dialogue > because it gets proxied as Radius PAP to "Inner Method server" as > described in section 2.1 of the draft Hold the phone on this. That's *not* how Jouni's code works, and that's *not* what we just agreed to on the calls. Jouni's code has something of a filler intermediate-result and CB, and we just agreed that everything should have that. Now, I am still not a fan of that decision, but it's what we decided. Do we need to revisit? Eliot
- [Emu] draft-ietf-emu-rfc7170bis-03.txt and passwo… Alan DeKok
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… John Mattsson
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Eliot Lear
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Alan DeKok
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Alan DeKok
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Eliot Lear
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Alan DeKok
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Eliot Lear
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Alan DeKok
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Eliot Lear
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Alan DeKok
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Heikki Vatiainen
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Eliot Lear
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Heikki Vatiainen
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Heikki Vatiainen
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Alan DeKok
- Re: [Emu] draft-ietf-emu-rfc7170bis-03.txt and pa… Alan DeKok