trying to correctly handle account passwords via ldap

[Luke Howard]

>> > DRS uses application-level encryption of secret attributes in addition to
>> > the session encryption provided by the GSS-API. Nonetheless this encryption
>> > is session-specific and is in addition to the OWF obfuscation.
>> 
>> And remains on my list of crypto challenges to tackle. :-)
>
>I think Luke was giving you a hint by the url he posted :-).

Actually, I didn't want to take all the fun away from you Andrew :-)

-- Luke

--