Sam Hartman wrote: > Alan> The whole composed / decomposed thing is a nightmare for > Alan> passwords. > > And one the emu working group needs to deal with.
RFC 3629 says that overlong sequences are invalid: Implementations of the decoding algorithm above MUST protect against decoding invalid sequences. For instance, a naive implementation may decode the overlong UTF-8 sequence C0 80 ... I would therefore follow the lead of the UTF-8 experts, and suggest that decomposed characters are "overlong", and thus invalid for the purposes of EMU. Therefore, UTF-8 sequences must consist solely of composed characters. Alan DeKok. _______________________________________________ Emu mailing list Emu@ietf.org https://www1.ietf.org/mailman/listinfo/emu
