25 Jul
2006
25 Jul
'06
11:36 a.m.
Peter Koch wrote:
IIRC the reason not to hide any attributes was operational, i.e. it should be easy to fetch-edit-submit an object without the danger of accidentally losing one auth mechanism in those cases where an object allows more than one.
Hm. It sounds reasonable. But we can make another object holding password like key-cert: for pgp-key. And in that object (which can be invisible for anonymous users) password will be placed. In mntner we will put that object instead of crypted password. -- WBR, Maxim V. Tulyev (MT6561-RIPE, 2:463/253@FIDO)