things fixed in RADIUS Digest -07

["Beck01, Wolfgang" <BeckW@t-systems.com>]

IESG Comments
-------------

[hartmans]
Rejection of Client Nonces
- see 3.3
"If the server cannot choose a nonce, it replies with an
Access-Reject".

[hartmans, townsley (Zorn)]
Client Nonce Replay Attack
- defined a client nonce format with an embedded sequence number

[rhousley]
Missing CHAP reference:
- fixed

MUST for operator advice
section 2.
"the operator MUST make sure [..] "
changed to "the operator must make sure [..]"

[bwijnen]
IP addresses in examples
- changed to 192.0.2.0/24 range

[jpeterson]
WWW-Authenticate / Response code mismatch in example
- fixed

Motivation Section
- fixed wrong notion that RfC 3261 tries to supplant Digest-Auth

[sah]
IANA
- removed preferred values


Issues from the Issue tracker
-----------------------------

Issue 151:
Abstract
- spelled out abbreviations

Terminology
- spelled out abbreviations
- more detailed explanation of protection space

Client Behavior
- fixed typos
- used Kurt's proposed sentence concerning Digest-Nextnonce handling
- did not change 'without quotes', as the RADIUS client can be
transparent

Issue 152:
- split up the text in sub sections to enhance
readability


Issue 159:
- added a section about configuration parameters on the RADIUS client

Issue: 173-175:
see IESG comments


Wolfgang
--
T-Systems
Next Generation IP Services and Systems
+49 6151 937 2863
Am Kavalleriesand 3
64295 Darmstadt
Germany 

--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>