[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: RADIUS Design Guidelines
- To: "Barney Wolff" <barney@databus.com>, "Nelson, David" <dnelson@enterasys.com>
- Subject: RE: RADIUS Design Guidelines
- From: "Glen Zorn \(gwz\)" <gwz@cisco.com>
- Date: Mon, 28 Aug 2006 14:07:59 -0700
- Authentication-results: sj-dkim-5.cisco.com; header.From=gwz@cisco.com; dkim=pass ( sig from cisco.com verified; );
- Cc: <radiusext@ops.ietf.org>
- Dkim-signature: a=rsa-sha1; q=dns; l=667; t=1156799281; x=1157663281; c=relaxed/simple; s=sjdkim5002; h=Content-Type:From:Subject:Content-Transfer-Encoding:MIME-Version; d=cisco.com; i=gwz@cisco.com; z=From:=22Glen=20Zorn=20\(gwz\)=22=20<gwz@cisco.com> |Subject:RE=3A=20RADIUS=20Design=20Guidelines; X=v=3Dcisco.com=3B=20h=3DMXEWZLDCF4l0YWO4jpSwk9BcfVY=3D; b=RBhpBnYnqK2tav8BD3l2/Cg2jpIWxPBvacumjDvTlRufBOUB8bMiAzwE6u0Q13E+nHUkz8PF KKZPTU3E9JvYUefVfv3tpXBfQCemJ6ch+L+Ky4e9oEC0+TXf1AAAvypq;
Barney Wolff <> scribbled on Monday, August 28, 2006 1:17 PM:
...
> In order to avoid pathological cases, I would restrict EEA-type=0 to
> the first instance of EEA-type in an EA-VSA, and only when the
> previous EA-VSA had Length=253. The meaning would be that the value
> indicated by Length2 is to be concatenated with the last EEA in the
> previous EA-VSA. It would be an error to have a Tag mismatch, an
> EEA-type=0 not right after the Vendor-Id, or when the previous EA-VSA
> was not of max length or there was no previous EA-VSA.
All a sudden, stealing a bit from the Tag sounds very simple ;-)
Hope this helps,
~gwz
--
to unsubscribe send a message to radiusext-request@ops.ietf.org with
the word 'unsubscribe' in a single line as the message text body.
archive: <http://psg.com/lists/radiusext/>