IETF Logo Mail Archive

Re: [radext] [precis] saslprepbis and NAI

Alan DeKok <aland@deployingradius.com> Tue, 25 November 2014 15:55 UTC

Return-Path: <aland@deployingradius.com>
X-Original-To: radext@ietfa.amsl.com
Delivered-To: radext@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id C9E441A9134; Tue, 25 Nov 2014 07:55:13 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id nrEPfUx7Msl4; Tue, 25 Nov 2014 07:55:04 -0800 (PST)
Received: from power.freeradius.org (power.freeradius.org [195.154.231.44]) by ietfa.amsl.com (Postfix) with ESMTP id EA35B1A9172; Tue, 25 Nov 2014 07:54:58 -0800 (PST)
Received: from localhost (localhost [127.0.0.1]) by power.freeradius.org (Postfix) with ESMTP id CCBB0224044E; Tue, 25 Nov 2014 16:54:27 +0100 (CET)
X-Virus-Scanned: Debian amavisd-new at power.freeradius.org
Received: from power.freeradius.org ([127.0.0.1]) by localhost (power.freeradius.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ZY6W-aLKOa14; Tue, 25 Nov 2014 16:54:27 +0100 (CET)
Received: from Thor.local (69-196-165-104.dsl.teksavvy.com [69.196.165.104]) by power.freeradius.org (Postfix) with ESMTPSA id C8C082240134; Tue, 25 Nov 2014 16:54:26 +0100 (CET)
Message-ID: <5474A631.7060506@deployingradius.com>
Date: Tue, 25 Nov 2014 10:54:25 -0500
From: Alan DeKok <aland@deployingradius.com>
User-Agent: Thunderbird 2.0.0.24 (Macintosh/20100228)
MIME-Version: 1.0
To: Peter Saint-Andre - &yet <peter@andyet.net>
References: <54660EE5.50503@deployingradius.com> <5473EF2A.90808@andyet.net>
In-Reply-To: <5473EF2A.90808@andyet.net>
X-Enigmail-Version: 0.96.0
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: 7bit
Archived-At: http://mailarchive.ietf.org/arch/msg/radext/yyFBcjd-7cr9mpkCER3IXbhc8MM
Cc: "radext@ietf.org" <radext@ietf.org>, precis@ietf.org
Subject: Re: [radext] [precis] saslprepbis and NAI
X-BeenThere: radext@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: RADIUS EXTensions working group discussion list <radext.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/radext>, <mailto:radext-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/radext/>
List-Post: <mailto:radext@ietf.org>
List-Help: <mailto:radext-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/radext>, <mailto:radext-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 25 Nov 2014 15:55:14 -0000

Peter Saint-Andre - &yet wrote:
> On 11/14/14, 7:17 AM, Alan DeKok wrote:
>>    The RADEXT WG is in the last stages of publishing the updated NAI
>> document:
>>
>> https://tools.ietf.org/html/draft-ietf-radext-nai-10
>>
>>    This defines a standard for "username@realm" handling, where "realm"
>> is a fully qualified hostname.  It would be useful to reference that
>> from the saslprepbis document.
> 
> What kind of reference do you have in mind? Perhaps a pointer from
> Section 3.4 ("Application-Layer Constructs")?

  Yes.  Just another indication that there are applications using the
constructs.

> I've just reviewed the NAI specification. Although it does directly not
> address issues such as width mapping, case mapping, and Unicode
> normalization (seemingly inheriting its handling of those issues from
> RFC 5335 for the username portion and from IDNA2008 for the realm
> portion), as far as I can see it is compatible with saslprepbis.

  Thanks.  RFC 4282 did address many of those issues, and the conclusion
was it's recommendations were wrong.  This document addresses the issues
by pointing to other documents.

  Alan DeKok.

v2.23.0 | Report a Bug | By Email