> On September 1, 2017 at 2:44 AM Raymond Sellars > <[email protected]> wrote: > > > Thanks > > -----Original Message----- > From: Aki Tuomi [mailto:[email protected]] > Sent: Friday, 1 September 2017 2:15 AM > To: [email protected]; Raymond Sellars > Subject: Re: Mixed Autehtnication and password schemes > > > > The above not suggests I can't use DIGEST-MD5 with master password > > configuration, if using more than one passdb setup. I don't understand why > > there would be a restriction as the password validation should just fall > > through irrespective. > > > > Because CRAM-MD5 is bothersome. Do you really need it? It's not really > necessary with SSL. > > [Raymond] Unfortunately yes, part of the ONC 2015 Edition requirements. As > you say its not really needed but more one of those tick the compliance > boxes. >
My condolences. Do they really require it for *master password* too, which makes little sense? Aki
