Simon Josefsson wrote: > Right. My point is that the one needs to weight this approach to a > system which does not use normalization but instead use > internationalized comparison rules.
How do you do internationalized comparisons on hashed passwords? All you have is the hash. And if the passwords input to the hash aren't the same (i.e. non-normalized), then you're *guaranteed* that the hashes won't match. Alan DeKok. _______________________________________________ Emu mailing list Emu@ietf.org https://www.ietf.org/mailman/listinfo/emu
