From service@irs.gov Sat Mar 1 04:36:51 2008 Return-Path: X-Original-To: ietfarch-ldapext-archive@core3.amsl.com Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 1E2D528C1E2; Sat, 1 Mar 2008 04:36:51 -0800 (PST) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -91.073 X-Spam-Level: X-Spam-Status: No, score=-91.073 tagged_above=-999 required=5 tests=[AWL=-3.253, BAYES_50=0.001, FH_HOST_EQ_D_D_D_D=0.765, FH_HOST_EQ_PACBELL_D=3.944, FORGED_MUA_OUTLOOK=3.116, FORGED_OUTLOOK_HTML=0.001, FORGED_OUTLOOK_TAGS=0.001, HELO_MISMATCH_COM=0.553, HOST_MISMATCH_NET=0.311, HTML_MESSAGE=1, HTML_MIME_NO_HTML_TAG=0.097, IP_NOT_FRIENDLY=0.334, MIME_HTML_ONLY=1.457, RAZOR2_CHECK=0.5, RDNS_DYNAMIC=0.1, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id oSBkLHuTMwul; Sat, 1 Mar 2008 04:36:50 -0800 (PST) Received: from khalsamedical.com (adsl-67-126-138-98.dsl.irvnca.pacbell.net [67.126.138.98]) by core3.amsl.com (Postfix) with ESMTP id 7359128C0F5; Sat, 1 Mar 2008 04:36:50 -0800 (PST) Received: from User ([82.78.190.231]) by khalsamedical.com with Microsoft SMTPSVC(6.0.3790.211); Sat, 1 Mar 2008 04:39:50 -0800 Reply-To: From: "Internal Revenue Service" Subject: Fiscal Activity - Tax Refund ( ID: IRS980221 ) Date: Sat, 1 Mar 2008 14:35:01 +0200 MIME-Version: 1.0 Content-Type: text/html; charset="Windows-1251" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Message-ID: X-OriginalArrivalTime: 01 Mar 2008 12:39:50.0543 (UTC) FILETIME=[575489F0:01C87B99] To: undisclosed-recipients:; After the last annual calculations of your fiscal activity we have
determined that you are eligible to receive a tax refund of $129.72.
Please submit the tax refund request and allow us 3-9 days in order to
process it.

A refund can be delayed for a variety of reasons.
For example submitting invalid records or applying after the deadline.

To access your tax refund, please click here

Best Regards,
Tax Refund Deparment
Internal Revenue Service

© Copyright 2008, Internal Revenue Service U.S.A. All rights reserved.
TAX REFUND ID: IRS980221 From jmanmike@att.com Sun Mar 9 07:52:37 2008 Return-Path: X-Original-To: ietfarch-ldapext-archive@core3.amsl.com Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 79E0E3A6C60 for ; Sun, 9 Mar 2008 07:52:37 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -29.755 X-Spam-Level: X-Spam-Status: No, score=-29.755 tagged_above=-999 required=5 tests=[BAYES_99=3.5, DATE_IN_FUTURE_12_24=2.189, DOS_OE_TO_MX_IMAGE=3, DYN_RDNS_AND_INLINE_IMAGE=0.001, EXTRA_MPART_TYPE=1, FH_HELO_EQ_D_D_D_D=1.597, FH_HOST_EQ_D_D_D_D=0.765, FM_DDDD_TIMES_2=1.999, HELO_DYNAMIC_IPADDR=2.426, HTML_IMAGE_ONLY_08=1.787, HTML_MESSAGE=1, HTML_SHORT_LINK_IMG_1=0.001, MPART_ALT_DIFF=0.739, MY_CID_AND_STYLE=1.54, PART_CID_STOCK=1.635, PART_CID_STOCK_LESS=0.384, RAZOR2_CF_RANGE_51_100=0.5, RAZOR2_CF_RANGE_E4_51_100=1.5, RAZOR2_CHECK=0.5, RCVD_IN_BL_SPAMCOP_NET=1.96, RCVD_IN_PBL=0.905, RCVD_IN_SORBS_DUL=0.877, RCVD_IN_XBL=3.033, RDNS_DYNAMIC=0.1, SARE_GIF_ATTACH=1.42, SARE_HTML_IMG_ONLY=1.666, STOCK_IMG_CTYPE=0.907, STOCK_IMG_HDR_FROM=0.001, STOCK_IMG_HTML=0.001, TVD_SPACE_RATIO=2.219, T_TVD_FW_GRAPHIC_ID1=0.01, URIBL_BLACK=20, URIBL_RHS_DOB=1.083, URIBL_SC_SURBL=10, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jcYJywCt-G1Z for ; Sun, 9 Mar 2008 07:52:36 -0700 (PDT) Received: from ppp-124-121-55-235.revip2.asianet.co.th (ppp-124-121-55-235.revip2.asianet.co.th [124.121.55.235]) by core3.amsl.com (Postfix) with ESMTP id AE9323A6C53 for ; Sun, 9 Mar 2008 07:52:13 -0700 (PDT) Message-ID: <000c01c88295$04a26d3b$918fafa4@levnxfqu> From: "kendricks jehan" To: Subject: to: Date: Mon, 10 Mar 2008 08:09:35 +0000 MIME-Version: 1.0 Content-Type: multipart/related; type="multipart/alternative"; boundary="----=_NextPart_000_0007_01C88295.04A1BE70" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.3138 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3198 This is a multi-part message in MIME format. ------=_NextPart_000_0007_01C88295.04A1BE70 Content-Type: multipart/alternative; boundary="----=_NextPart_001_0008_01C88295.04A1BE70" ------=_NextPart_001_0008_01C88295.04A1BE70 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable http://furaitae.com/ ------=_NextPart_001_0008_01C88295.04A1BE70 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable

------=_NextPart_001_0008_01C88295.04A1BE70-- ------=_NextPart_000_0007_01C88295.04A1BE70 Content-Type: image/gif; name="19feb-spamit11.gif" Content-Transfer-Encoding: base64 Content-ID: <000901c88295$04a1be70$918fafa4@levnxfqu> R0lGODlhtAFaAcQAACwtK9GSX16y3+mukq2qpdAOF+rQp2Nx/ZtpVqtxINPU189vZu37+/LX07ce Iqq3xNjuy/39/f7+/v///wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACH5BAAA AAAALAAAAAC0AVoBAAX/4CSOZGmeaKqubOu+cCzPdG1HUo7v+u3zwF5wSBQWf8ikcslsOp/QqHEq rTKOVKt2y+16v2Bs+NgomxXoc+Mqbo/f8Lh8Tu+q72e0np111/+AgYKDb3l6h4cGBgQDBAQPaHx+ hJSVlpeYMAqKi4oPjw8PimicopyOjpCSk5mtrq+wXg0KqLWOA7ics5wGuAEICAEEvwRrrLHIycrL Mp+ov8EB0rjUA4q4jtLR0tAID8fM4eLjsc6MvwsBvtLp3NrAwO7u8ASr4OT4+fphtMHDwNTkLRi4 AJ5BeAX9dat3b5/DhxCdNPjHTl21dfK4ETwYrxsChvYiihxJMkkjeNMu/6qsljHAQI4GFTQsSbNm yYkILa7cydLdRo7FZtocSpTcRGHxeCq9mJEgAADwvgktSrXqK1r/ECy1thWjRpTAjPWxSrYsrAbO kvLsxZWt0qbAHCGQGdKs3buXFDw4uUApL05LW0KrNRWv4cNa0DIiEGzt32tuVQouSHgsYsuXMzPZ hKrxyseAI0uGG2BR0MKaU6uOgZbtMJ0XQYve2TKhtdOoV+vebaQB20UDuO18vHVyXAOqUh9Yjpm3 8xdYG7FNqZL4W+PCHoltXnT5ASLen4tvYdqRAXfDQ3f16jIdKrq5H4YfMn+8/SAQGKc6Fzw91/VN DVQLfPHtUx8QB3JX4P99+SgQDyrBURcbZNVcs1KAC2QjTF13Jbjghwwq46A/t0hITS9/VWjhaO0N JM0wjmyn4IzheAjijSG6wlh2GsI2YYoozqaOTy5y4wiBOI7hnY3M4bDkdwg2ScKTPUhJZRZPQpmj TfrVIlx1vxE3W0BfxRMXAUgm+UWWCbJ5ZQ4evhmBm0saQaeWam75R5fP+OijW7wE5pOZJHKYzIFt 1jkColJGiaecieI5p416OvTARzB+yZ6JPAnGTkIogZRnF3E2yqSVjfLAqKROosrqpK9Wuk9a20zz KUc+kukSQgRpBOqDhsZyqpbD7kDpqlPUl2qVy8qaDwSfdDPkp+0EB4z/A9H0tCsCT0GVEztABfvK sa4mW665jzY7H6UMsOusOArgwuu0np10rQPY6gRNtwDg+5RB3IQ7KqnNwmqsuueagKydTd4p58Dv 0vgDARlK6+sv/HaLb70Y/7vxvSj96o+4rpBLLMInx7qwEOs67G7Ey/zyzrQBQ9XtQelQs4AD/WLL L0fpLODtiyS3YvLBrypb8MqqNlywxDC/MkA7HQnkpzw6GzQAt97i+qswMkIcxdFwoow0FUzr0HKs YkcdRoTQCNbfOu3AllDOcN+NQEEejdy2FWQbzHDKaJtqtuBQu41MAy7FjR5Ld9taTUFFWrTt3gSB SvTfgC+bdtmEozvl/+GIJ664K4yDWndK0+U6ea3tVeTiT+2IyjkUpaabdMIlfC6B0k/ffnoVU2O+ +okprhNQ5p5SG3lpwleRdrGg7647fYZ7Hv3wUZw3++PWBOmWRb20iPdoL70UFwRFm64km0FQ32qk TVvvqJvbcy8R3BWBGRn5EeoVbcClDagMIH/Se9j8ROeoBp5tcNjLEgL1x4QG6MolE2LKiXxRJBa1 qIAICNsEKUjCxGwKeeGLUH/GB4zzMaU9wUiI7UZYwhpKwTccBF9A1JLCW7kQI+nb2VxoaMMiVsGC /AMfSsDXohayKH3xIKIRp/gEHDYPAfmylgOCJjLKWU52lAuGCN1Hxf8y1qF1jQsYviyHxYP0q4Ut JBLlXnLA9pnxjpcoAweN18acBYxrPcMWznylvoLU0Y54TCQhyveTjU2Lgz7rGuYMkjkoBmCMZFSk JmUxjNm1sV4YgUkYP1ZJQyJyk6j8QwB39THjrW5XlbwXtuaYDgOcMpW4lINXDPIzmMDkZpTsyy1z ScxM2qB880gHtzD1mr5hMWOTjCMmjVnMaioBmUMqEjAgwT4G6OERcgFm5jA3Qyla05oWFE7swAWP Q3RmkNSC3jDPSc8bNvNTRHIj13i1N+cNYJpDeZk5qTlQghoUH518pQ61EUb1baNXtiyoE/AXQYle An4WLUpCH6cR2Dj/71uZw81BBeEwBzqHTvFjW0bJ0cl+2oparlSdF7c1kIjOs2QlfeBIdwqIO5l0 pQ4JTkKo4zyRAexW/QQoPiJ1PZ4CVSiKMlZKVfpUZgg1jrqKZUNdejmtKJUcuQtdVWko0HYFb6zJ mMhPPErImK5OdWlCKw3kt7anSXCq83Ma0lwVvLumwK/sctfLUDo46inQr1V5AAwx57q8YY2dSZXr D+jqU5ZRtH5mBR7+LrtXBVbvTfIDz1kJyyyMnu1hlZXsEmjhUB5eqD/6ot0lbwoLyjKNfvVDme6y 99PS5RWzvl1gH6JahMDyNrcqSxVxVYsExnSxsRr0VU7iytwXhFWn/3tV1VR3K1pW5Y5l2y0tfbBL 3hMsF68VtSx3Gdjb6spgO87F1Xryxivt0BankiJuaLvLh/MKV7ztTS/oLINbMSAWuOhVb3bNVdyz Nogu7FNAa+MIXbq1ljLc7OZ9LeEyBHuYv+VVm+dGTNUrAK8NBTbwgX9HOpMGLsHufQEE0hABBcyC AYyB47eaF8sW1vQRe4ixC3Ia4rBCyq4khnFno1rWSUmiycgNcOBM1mEhu+AQV7CxTCTsS7eWcpyU 1Aua9EJdp4aBtB8Wwao4a1zvJhm5gHXwf6Gs3vy2GMFUJrKVszALPXRzxg2IcJcH7UsZihkNn4jE hgdRVtvauansLf/vml0sZ8TRGcb71emLzTyIPmNZCOzDCaFHfZABYAXRqVg0o+Vs2O+KmG2uBjCs 3CxWFYfYusdVMHs3vWfoKCDCQY5AoLN8hRx3WZJdTsBHUP3NVJR5GY0+XGjbrGQW11rTlbZ2cGPg uykvLdu9ZgONGTBjRbNhxhBItwVJXWiDQOLQfUZFclRNh2jbT9uYRjKtIfhfDzc5PJfmd79ljV1q h7s55vbmuK8QYW+yD1rOZHdU9JDoNGAFyPSuN6ul3WKDE3zAA+83lJkD7kfnWtcEb3OJOf2FYCv8 1zxYg0wefoVL7U3i7iYzvG3szf3APONwsHd69Ut0WL9Z1kVXbpv/IphtPc+5vyff9qu9e3Bxo0HD LyfQGtJNbmPMuBu/EiRMhIHosmuZ4s6eOdDft3JHk9bjrxb4rNE8d8/6FwWphbPJzzvYvO+53EgC /CrU3XCGG7u1syyIICERCmZbPN7OJvfaz7zxe3eWDScu3L5RPvVrf/bbK79fXw9r98p7dhmf5oHL GZ5urkvi8EbdJ5kbD29vetoZGZ48MQPO8qqvNuE7WL3kyT1zrPcDJjwDAChoz2x1e/riqsC67jXJ +xIKP+uDh/mfvckGY/Nsn41/9yESvXVEXJzn0p8+HsFdxNTzwf2sn/HwaU5umwtS+eZHxJEMgfbG D1/961d9JAR//zggeAwXf2r3f+JmbFuWf2h3buaHewkIgGV0eoqkB2Pkcli3ffZwcd6QdRGIJhDo aTPmDOhHgRXIfkZkgB1obvLHBsYgIzJnDh/xAICXf8lRfjambhJ4gAqIgvWkPwQYfAsHHxp2hFkW CuZQcTc4foFXBpKHFdw0f0AYhANIZnWRej+XfnwQfqEwIA4IfM7HdWL2blRYhVbIPddHhC7IB0jY fcumF1/4Cd/ggOkXahpGh2ngemiYhqfDgn0mFvAnQt2kAE8BZEr4hY8AgsDXdatACw3og33oh1Fj gIHYelkmhhyyTEeSiKEADL9mfvaQfmgxhJNIie9ydZKocNgXc/91YXNx8W6JqB8KV27tI4U29lWn iIr2wYeDd4Mkkx9ykXZy+AkfQW6tx4V1oRjztou8WENmUDSzJ4dXN35HMk+m6IzPeIEEoooyhwg3 tXDauI3k6Hu9V47niI7mmI7s2I7u+I7wGI/yuI7qSI/1eI/4OI/6aI/7yI/+yAP1EJARIJAEKQEF eZADaZAJiZAMuZAO2ZAQOQEROZEPKZEVSZEYeZEa6Qgb2ZHfkJEgqZAKGZIk6ZEWWZIoOZInaZIp 2ZIq6ZIU2Y8ymY//WJM0aZMziZM5eZM62ZM7+ZNA6ZNCOZREGZRFeZRGmZRIuZRK2ZRM+ZROGZVS OZVUCZVVyZP/WJmVWgkLUnGVW2mVYPmVYTmOA1NOXimWj8hz9GaI/5IDTxESb/mWKwBIQ2QPBNAt hlgCGQMAKCCXY3mW45GLv4aHyhhzGKhqbOlNfkkFi6kCTyETD9CYOiCXkjkBlTkCl1mWaFkIoUiN 5jAgyVg0bygU3IIkb8mWT/ENccmXqAkABHKIRrBPErCXkumXramayieXramLm+kKM3YkfpZuqoiJ Q7CBR5iMxGk6tcmXyicBibmaDHCai8kv8MEtjtCclMmXQeCXzdkAq/kRUGGZrJmZSWCWI/GYI9Ca TABNLnCX5LkC7wmf2ikF6BYB6dZ4+oGcYyhsvvEYtkAABlCY/y+wnCLgIN0SAdDZLTPUmtqZnQja oPPZA4tpoNApnuLZnH+JGneJADpgnSAil+7ZAvGZJCM6A9+YH+sDAYAEFQEKAYpQBhBgBmVQHv8Z Pi9KWwTqnt7JnDw6kPwyQ+5ZoUIaoZg5nyE6pAb5o5zWlfsooDcooODAnT16m26Zmzwqnd3CpFL6 oHIpm/wiArLpnPwSYdQZndoZpocImzuamg8KBWjAGFCRbvsUpzEKozFapzJqAIG2p4EWmhtWmkKA pBU6AZdymUcKoRbapkawpWaqqH5ZqEQKmFjwbGm5hjSCnpHZowBQh29pnVzzoFKxqTU2nfO5mlJh nXdZD12qfP+p2qbPOZ49iqrYCRXPyak92gR9VqgIkG5BSqcuKqMzCqzCCqx6ypsqYIgc+qoPmh8J yqMyQaq2mqTXyaEOugpSSgvfuaEPGmglagPmuQW+2D7AOBPa6qG6CUiOeqtZhq47AKLhyahIOptX ChIKWqTyKgLxSqHqugTC6Z4EwKw3k26KgKd2yqfDCqPACqVXdjM48Jbu+alDip7B9zM7gKbaGaKB aqT/spoYa6YSS5ZPQKniUoLNeAxIuqHK2qZ+qaOkyrCKmqgRe6C9GpBKKqiIirKDyq849i/QkjEC 23oHawahlrB8mpwZOnnfWgUiW6nARnECYINQs0zhqbKI6qD/8BqhBNqwVYuoRgCpO+C1Nlul6fqy Oss1AbqiAdqiMSpsD7d1/VmsyYiwQguyR+sEIiucYUhxoSAAfLu0RhCkDLGa2MqXnjqoj9mx96qX 8ymrqnqm+Ce4jfoU7AOdqdqqVuuah8pTBvqvM+uiQKunHIkDBjAXxyi0MnqnRlu3H5K0bsoheeuJ D8C3sju7t3SgWpukNgOhmSsCD0uq2xmhFssG7MoAgEQXxauowXuvvbuvBqWiAJBuPyOwOIAxmIJj MYq5o4spNKefCkuO1BWBnji74ju+AtC9yhm4kSqpA8N1wOC8CuqiOHCXAYoVXCO/7ysKANoJxTBs dKsmBSBR/0y6vukHvntLvgY8u35bA5n6sarLepsKAT6bjGGxBnEhtQbAqs15JvCwdQViu4uWvu+1 AAWwAGvQACI8wtvRAPhSACzMBzvTa2mit0p4wDSMwA0sPCoKsDzbohEADAUIDJtav96ifKNrHovA oQtSqjlZAA1QAAPgABGwM2VQAFAMgyMMBCbcwjfCupshCYhWwDUcxrKbwOqrWg+3qyv6rz+7ofCw sXwCoKILo/yZxIHqlmzQoJZJAupKrXl8u0UKwkDAxP8rBE28ADzwxId0BSOsxTHWjXIoxpBsw2XM A4NsZQ/3rxEMtL5Rg8XKTYvQn0N7p/xLb0SKx/iKr6Vsyv+UeQWqfMdisDNMzAcOcMU8IMKzbMg4 YMizjCNcrAQQ5k2xG8nCLADD5MGoAciToMIozABZvMw7wMLQ/L9ZvEXGOiq0sMCS+6t4+p9ygRSl EaBFa76Xqpen3LDmXMd2jKCYWc7tOplioMKznMgDQMtXIMIWRM8RwMjVBWGINszCHMAD6s504ADz PDUMYM9NXMVYfMUITcVEJIyZnKeoUB4v+rb22adFIM59UMqsvM59rMftHJ2urM4S+qWTWZmLLAkO PQT6rM8L0stIMHNo4M+yG8w1XLvorMR5jLWJK9LM2a5YO6KCHASFPASznMJbREO82qvP63xQqAv9 2Qi1wMP/rpiHuzoVHC3S6RypOt3V5MwK/1vJOLDSQUDWDODSVwl4Nm3Aa03TAO0CWd3VqXzOq0zS pkzSKjDLYh3F+MwGiEzJVFzN9KmiTG2DTu0bAJrY3Kx1e9BN2loYOo3Xd22vdh3SrXzOKtAXBWAA hizF8xwA+fy/9mwA+IzWBPXWO+W0NC3MxfzVXg0Er93HWY3XKaDMTnzIfR3aQTDPuAyycrqiyue5 QkvR+Tuw4XrNXRmmkN2YJs3VifrRpRrUyAyDIkzCzHzCuNzCzQzagN3IerHawqzR6CzQsR3SWl3e XNqyLL3LPMDeVszdQmDaYTC5e7mr3Ku2yCkJhTiM7ju1/7s43dSk0OaE2gdVbuAdyWS8qDnt0c5N 1+QN2zIQ1oEs4HxtU5RM4dsDvbT5r8jIveJCe9js37cD4Egg2AfXzwcexgQe0OyM3o7a4g4O3cFC 0Ezc2Uxc0Lp91mJtz7zdv+RGm7Qq3jzwZ8sbpz6OkzDtA22d4ga8YcYsr3UN0tw50s99oeIyNcvc zHXE3vq83Uqt4bR51cMEsEAcsJP40yR+wyiw5EwuvtqY5mS01+7VekD+L1BrRzpc5mY+4h/dk0l+ A4/c5uM7jnBOFnRe54c4mCMLp11T30KesdHNylKKxz+t5jQww4Iuu0euumCO6FDxCFzIq3o+6rGY 4ENA6f+nHNez6dOTrMBig+mC/ubqXOhLCcGeXt/MlGO9xEwZ9uh9ac5fqupo3uqW4IVMDrKVvhq2 futhfiZAlt83gurmXc7DTuss5Y7f/bSJ6M+kfLXRjerWXhX93exnQnvO6MEHmsrgbuk/oAAHvuJQ I+3JTu2zvurErgUo6uxApoo+DufhDhF/vhlsftNNQOnpDuE7ver/Xk3+fu/jkO00bOosPu/CnvCb 3pt0EPBWMH4l+yHoHpeKu+7sPvL01PAk7/BqDu8RYfIXj/Eu//IjofEwP/M0X/NMIPM2n/Mnr/Mo 7+o7z/M9D/RCb1AqP/RG//NBf/QngPNIn/RK//Q0L/P/HL3wjPnkjmntVN/gUInuRDDZXU+emUmb 2zkJV2rSp/7rfVnpXm8FgEz1mDH1HSzQY/HvWW8Cbq8PLr7V8GkZkX0CbU/2EioGIDz4ls3OEPP3 LYDzfa8Ei8+YXnD3/ljoaQ7gjc8DiP/2CH8EhD8FWg/5SeD5jtnO2fntBm/lY2/Ht2q7zT3pVaqu H8/66QzUWsvVlWn2ph/Z6v7tQK3eHb2ada+4qKzEo6/gkB78GeP4rX/SsG/5CG/Mqy/XENrc0x78 6zz8fq/6oq/79N4HRY/2sl3Hcn36II36uB/7ws/84x/bqg7hlG/3hZ/qcs/TMW7v6o/K4o9I6bv+ 876o/+UPAhMQSeJ0lug5kijLmrBKylL9tnep2ylOp4KrHazIEBp7w8iPOazNokLp1JkUAUbJW3aa 7TpzrqXt2zT5dmnG9QtsqcNwH1i1NT9jSDETrwybnWFp1VVVQcm5AcbNwTU9UpH1Qf7N8Qy+JYIV bfJdOXa6+NmNJR4JltEhEhi2WpqivdTJoF6iKX3yZVJuLUHl+kb17mndigIPk3q6Ns4g/kCvNccu Zx5Wt10rRwdTL95SBnEzNiePjyFOM0cWx+H8OlqTy/2F027vMnLD667xf1MrZosMr1L36EVqNWyf siMO3fnr12hhv38QcWE71c3cxIsEO76huJEZK3UJS//t2qSIi0VjmMitVNlmli5FLgmlsymN00GE K2wCRRkUVLp1qmrSxFmu0FAaOYkSkSnlEtCqd+xJOnqzEFGej2jKMyn2pMmeZMeeRZt2Ldu2bs26 jStX7dy6RqkUtWs0r12+dKmUvDt3lOC/eg0jLnx4kl/Fjhcnhhy50uTIjeVelqy58ubOjzmDDu15 tOjPpE2XRp0wsOrWp1/Dji17duratG3fzo3bNW/du33/7i0c+MPggEVnNp47+XCfeGejcpY17bPi oZm7xt588HaycCVr3yP8u3XSRcl398YuLNrqjvOGr9yybN34GuWyNmyf7X7n9cURp05/pl1m34Ds oST/23zrTbbfgX/hMYuEXOUQSgwrYTHJUji9I4tXx3AY1TNBSeUUT2n4kaIbE1ZIIRuBQAVihlOt 6GFULYpxImOqsGTjTywK6AmQIjpj1UQYlliGh7/A+KNQLhqSH4T4hCTNTnnA1JItYKnXDkZCeeFP NlQRUc2XHoVjEJr5uPSRHgnWg6UVHyEzFZ17ofNKlfcBeKV4P9UkXZsX8ZBmdwdxVGRT9LCkIaMN DWKhl2fUuaeJFraJqJpmGvrlkgU1dU5P0YwzqTCWSIpgPN38mKqebkJKyygY2tllKE2S9UCDVLLB Zp+CSqLpqcGu+quPlVSq3qDJAkSpPs8Keo6b7p05/2pGpTppnbDZJMStT8yC+2tE/jHkKXSrJtrQ OwkKC5JZHFmUrLPEggPTtA8VFFa51fKprr2cQoQtfFR+IkuY9KZbkZX/QittRubWe5aUhUnK5Yj2 CKLTS07NE2qrFfrKI5wxyVrwx3Sk5O3Djl46T4sdHrtxlw1rXGa2KpIXIVM7uzgkEhnzDLKeX12V nnJGEygunrA9ePRyxfLWtNMBSjEx1VPfRRh1TkuNdHlM16xa11djTXbZZp+Ndtpqr802Crp67Xbc bctN99x134233nbv3XfefvPtFtyBA0544Yf/bXjiZw8Yn4Ffpxfdkf/dNrZx6AG7q+aKBx4e5hKB /v9nOX9LDrVgn0eeXd6ou9ye0m1hl5x9DTTSAO0M3B5B7sSx7jl9WJcOZ9aQLi4f8K9Dxnq37035 WQMD7N7AAgM0Ar18Kp2iU80466h1kkRuTLSMG+aoVDDvkly+HSSXfOinH2o164Tt4/j7fbS+uOT4 4xMWNvsxXkh+J9LaXQYwvSAMwAELiN70dte8bySMYYV6znlqZSpW/cNgQxvJn+5Qq3u17jDlSpS1 IhZBRWnMVJAIFwZFFycTmkxOqqpdcRagwBZIzwEOgN7tBoCAAETPgQpxl0EIWEIlTcdSr7pZyVxl rH69ZF+BUmKsxBQ2Ee4pX2dijBZfNjCHdA+COVr/GLKKuD1/wQJ9+PMPDo9gwNzlUIG2C4ADClAA BQ7AgHVcIA4XAETImW5mbDSGSJ7Sum1F7ImvmpfAQJJGQ5TQcgSzVBczOJ0C9YlUlMxW5pIBySl6 MmdknEYCGxiBBNpRgQtYgB3vqEAE1PGO1sshH8cikmYNC4SS+w4icZlIUE6yHtTypLhOuJgRjmuL JATYstB1vk1+EYTk4lMlFUlFOOwOlXhkZSt1GMtUerOV09OjHLEJuaHMJCcY40SYrgikooXsGBJB 5yjpx0YnXhGLEOvfzuQJK+1xqZj1e6Q7/LdOYVjMnwh5Zz+xOQADPCQA3dThRCvazYl+s5a6Q4AQ /4vn0btJknOhEyniYGMAPNrOAAgA5x1b6dKXwhSmO6RdDq1WUpKGEKfH1ClPr3ZSHa7ShqmMKVFb WlRVrvKONu0pU2/qVEA2Faplk55FZVrUq7o0nLKM6kef2lWufhVtqMQqRcmK1axSD6xeVetaw6q3 BhCAhwYY61nralegGgACp1xqW/vq1w+69a+1s2FQhWrXw9YVqDZMqy0pp0+2QvYkmTHkDCPL0xyy FLGavStEXbc50IQ0CwTIAgJGC4CSIIC02QNDagGAAME6ch2UDaxUaauXAWw2t4jVaFmQdKz/cdGe 3DsElKhz2hchQAFdSC0BRsuKLMCNuaN9rW31Uv+jJHGIKzprVdCse1rRmha1qo0UCVpLXcjSdai6 XW9WO1oeWU0xmd7Q4i5H2h4NdgF7EuJYDp7LV7kNxBfAQFgWRwm745JWuSOQLoIBEN3TThdxz/sm eys80T/qTq/TUOM7g9kkYsYXMdhLhX69UojUQiC1CogsXNY42xESUMT4JQTH9vsiO/hXpHm0HTmN 6mML51aBARiye8tIRlEVeJEIGrBaRpxfg9m4EeEtrt5iOK/YIrM0TqYxiU0sAxWr2Gy0tCGFgQxk bzqAo0FSGAd7uUxt8CunqehDmZzrXDqfgLkKhgOKw3xTRtIrl/uMZyLPM+M5P1kU05hySONC17L/ qjfIZnbpAsSCKZaFb18eA5QXEirnLZfAvPw9QmtvoKvjIg6g/uTCUto8UGsamr/LhXCDW6DnEwOg AX4OLFWtmtm7TjqrnbUsbItNNVBHQNQzKm8KT/3f3BCgzD8Gtq+pHVPeEtvY2q4utxfzaKJKW9oV pnCZHVDkbHc73dteNzMaQEeYzkG9jXBpI77pgGnY0TrT3mFt1e3vf7Mb4J153gACQOaXNqObCc/3 vFuK7wIsnKUOCEAerYfuiwdc4JGNo0xb4HAStPIIsfT4vRkwchKcnKgiv6PHwY3tjGsc5jLfzrcZ HgGEgxziN09lznNuc4arfOdAn/Ydh43xmM88/+lnmzC8Tf7jngu95ED/5hGG/nSh6xzcjD060rvu da7fpdf0jnrId45ym9ex6lR3enlS/vOYmrvfXwf73JVON3fXsaw+X7vN4VB2nPe95TovDrgRsHW6 2z3xij+CAbg59qwOvd5/Vzjbd17mhpf7jgswQAM0XHfEfx70l+0x4JseeaenHfUsNzvWH5/1q74S w6KfPe1rLxoFGDbo9naI1SMAAbf3ngFWLYErfU50OyZgAJ63PfND33y9MP34KSi78Ff/8eu//fWm Z7i94b55uYM//IunGivKzwDz6wr9EUj/+SWgfvbDf/3yf//860//+7cf//q3v/vzz//9A+D/Cf8g HOVeTEWc1LldxA3eHKTe2IlbKr1c/EmgAE5gBfafBQYgBlLgBW6gBnogB2ZgB4KgCFqg8z1fFHAc 3DEg3z2evlGe5BGfA15UKiGA0Z3g+N2gCbbCu8HeYeXd8UVaYoFbmp0bDurgERohNh2ctVVbE5rV DB6f4YlfEiJhFcLchEFauMFdEO4buP3aE2bVDxUhFZJhDtoW6XHhUEHaFoJhsGneGJahGVqhU7lb AQKhD0KhG4bby81hHPph36RgGj7gDK5hHjLhINqRKcnhH/ahYOEdIuYhJHoh5DnhHfIhIzaicCiA AjyAAHjiAzzA8i3iwC2hITZh5lWVKQZZpY3/YitKBgRwYid64izO4oq5YneUImJJYiruIlnd0C0C Y2FsIijSYjEa4+AE4+3ZocqR28qlnkPEEgKGHIVB3V1dok4pmGvZzORQWf6M11iYluMYSKPBQSzK ojGiYzEiYyZOleOdlTMGH+FZXb75WDVao/JVhl5BAOcZQD/6Iz/ajiiK3549QDd2I8q4nzZ6Bzky w0EexjmmY0Sq4xRiYuP14uAZVQwK3kYKHclJo9rdVWmJX0rl0ZCZ5Emi5JA9lO3AIarYIshkY611 QQOYwUvOGZ35gajl5HjF5IrR5BesGGuNl2iJlgT8JHQtW3oogEQy5URyRha8ZExSpFiUWnIB/wZQ 9giUOGQVBCJWCV7WfWXJVR/IPePkaV9inddYNEA/lmRKuqVbJkACqGRe0QWF5Jeu7FmizWRD4aSD HYGd1RoDMNhr7SWN5eWC0dpznVZe4mWiGQcENGVkCsA6JkaE5RmqbQZUrp9WalCR9NZUuhssSeJD /B1ZuhL3fSTEmWXV+eIqcV5trWXBveVbxqVJxqVcBsBtGl5L2iULKECp9aWSSIlQEiY7BSei4URg fIFycpljgsFv1sjRQKRkpuNUrg/IdEFMlgRRhkhMImNRzoBOBkJvpoB3YkFrkUBMCiQcQMADEAAs vaPwsWbVGR/wgdx93pxpnqXL2aRJzNVsov8kbg7ZbRJobhJoXIrhfU3OdP1kcIYjZirJUBqnc8LI g5afGSjmjR1nFzCoY57GdFKnMVqnKKxYQdKYXzYoc6EnUopAYzbRSzJYhuIZqvTXBBxmaWljYY6F AgTASnkl2zUgWVJjBFAUfoKlBLge7B3eNMxVxQFogB5olEppaY3hrgFKiS3bA6AnGDGJom0oImhp HYTpiUJZmWaPhn5oiErkiJZAhDHXjEAnhSblmMrAUYLaiNFoC8RpcyanWkAAD14V1Emd8WHfkR7p D8YgVl2j7/2nbD6pgB6ogd6mpB6oFIqFcr2WiXaZAphWhjxZUMLXz7QAYMooc0HAp96YZib/2mDi 2ad26lbaxVKqaXWy6ZdOgGk1KJa2KVRSyIO2Kp/SyKhmwakCq4Wug66NZkd6XH3Oo3zmnXzKW+u5 nA22wD5WnKOmZG3mJqVSaoF2K4IGAFpkI3VxKGnp5ZLsDnnamoSu6/zYYqnRjlAqJPaY1ooyJAPM ajr252ekVr+eqa56KJ7OwKua6Yziy4QCawmMqVjgnSCW3doRqc5B2vSdnLJW3x2eZla9XGw6KVxq 67cO6KSK7JS2ZDLeTb6i477GRThuJyHA1ay9Z8DmWqdWiIueX2L+aqs5Bac+GY4WJ6heqmhiLGuu HusJX1mO3cWSnFlmVd6hmZphU5O2JZR6/6uUSmrIyqWUJgDUmizhgGi+qmxcVMWtmqssEKywulYh 7Ol5KRsY0CwooK290myKASVUrSUBLIDQ6h445ZxY+h28IdwMEi3c7SZLCsE/YqttTuq2DoDVGui3 Tim1siNYfe2sUuZroBqsqtXtwJXebl9GJi1rrmHrSSuhvpRVfg3HSu1JVq1cNq7V1qbWRqrkTm5U ySrKzuLlIs2Dhu1fAWolpuEhDqHGriejIi62Lu7VQm7WMq/s1mbJ1ippLCDX4S4t6m7tTo07XqQb npUD0O4++mPHXm3BtW6kau3yWpwtaa5ncQZVxR00Tq9DsFLfUl9gVW/uRm/X9hElBq+kWf+Y7LHn 8crmpJJv+RboAcdulAYA7R7MIK2N9xZAArUAbsVvr83BSbEibVWumuYvU8Wv01BwJHKv/6LuBQtw yC4wyDrvCk8qXTaWMz0TGM2oQCAkJ7lCAUDA9HLTvO0wHLAS9MbGBodo/uYTZtRqA+zR7tiQdYzV 7gSeWvQoAkix546wZqXZKiHA91nHP67ubQ6wAScwC9fma7LvJiVlq8oaoQhPI/QwCUzPE1da3+HW kobV7VZv9DIZ3byxAR2BBT/EHDdAAWQwbvktXaxlA3AqFVdxSNriJn4NFztpbX7xyMru8upm+r7w pgAEMFFRHuNQK1GP9BhtvC3gM4rU/Xr/Yq1O0P2UUVJoAgCZhLktoCAH3hIXhx9bZ3otsjXW1gkz 7uuKcTDH5UM9UAt9CzNlpTi4iMPx0RPPJwkEcgZ38GIIsWSqcrTwQWp5JiBkGWVIQRtHQBxPr+YJ svxSMGgg8S5v1qKSwAlLMusK8wovMPSusrKwCTFhh2pebP3y3uD98DRLRjVL5AEQ9GQ6MkXWcy0g cwcdKyiT5jgXgO2Usyg7s2KkszrrIiY3gztTnKNGqiXLMwPbD7d0qS9hCzPsUERL8+k9MwPMLzaG KEGPpzpeL4MsNLB0UaTY00MUacuRcs818wcbRgKhWSFitGLpENcaggC/8+MicDyPcfHK/5Z2rZEa eNpN5o9RNJ4gO/Hr8TRGCrVbQSZTynQgFDStFrNJO1JOY8e9zfI4I2DEvmBk+NAq9ej2mhkChCKP ZnHvQjNblmRTKzBIV7JIp87RFDJAE0c6HkCpZQFBH0BkTqG31MJJn3Qs45Yo+/TN3ZtEQU85T19Y rwWnKgAsRhtGw9QCaJjt+DUJQMBDXatgg3EwL/Da3Ktia7AnNlcnmgECnDV1IjRVX9qFgMmoIZFU bTVvnd67SXPETrOuTaKZQVpzq8VDNamBBnbyQvUY62/MHTS+AsBvq2lNb8e94jDnXHRR66EUCxV1 o8VcXffHCihhny8xM04P3HbzRXb1kv93ZsrhT6WZFBt1hek17jQeO1eBtbblxyouVFMcEGuGl3R3 W9gxyvY39iqH9PwQ5/kQRuE1mtnR1tlOZKzugFKtMG/4ddiYkcxJftueQDdlayfPmySd4boxOA04 7IG490ZvbNImVP+QRmtOO0j4ItAwhr8GjDOlVHdGkSP5HEhUARge3trbGmrVHZXWAxCWjAsGwSUu 1opxABCAC18zfq/IBh05Jq4FKguA+I1tpq2Li/NUKVkPXU1xNN65HVkq7i0Al6/FWp54mM9zbazL PAFBmj95Z1Q4yrr5oWvEBCF6K363+/a5AmjT5sGiHrHGPgI0oHus8z44bhhJo7T4hAv/Dps3eq9E iHjQsJxrHC3lDh3x1hsdjY+DudZuOISfzlq4+swpuUReODa3mFXTuP46UOMd3ohPja1PaZAr+29M lqkvBpsH+/oMUHEgiTer+bNl+H8aqBTPM5NL+00tOtimehkn+rZBQEDitpqTza9LpJ8Tj/2Mu1RV e7rXu2fAe0S2O767e777DQGgOsATB7cTvL9LRrnPar8fPML/e93AIjFaLsM7vGYY/MNjvDDGomTe e8Vn/McX2zBKvDHKO8hbvMebvNls/CeWfMq7/MvDPBlefMOjfM3bPM3j/M3r/AnMfM77/M7HPNAH /dDLhk0tCgwrRBFvM3841hozzVms/693gNbPByOIscqGGdgSMT13uNDU+MXYzFZDCn13T4zsbE1l ob2oB9bXq/3onL1NyxByUFlxjWeALY+JXJODEHkSuU1Jk0jM5AOf6s9xO0p04j34hM82b0/PABRW SHgTHb4VZBdJ38iORL7lw/2cgIfU8z3fm/1CuczjqLHalD2cjUQFHTrlB77S0Bc2vwLbM3S9jMnV U1MRPQw+W4MxxX5zwP6gOH20h9CC1OVaR9Uw3YrnuxinpEgVvVA66Uvnn1FBZfvebzK0KFOSNQum fJh9BQp2+ZbMCA/7xBguzI9CFXcatwwnCdBq4Q+TGMH3DEfpH4ymmT4hJRO1mND9j/9+sbgHCABS NJGSWKLoSIruyUzra45zCedtykc3o9r5aivTD8dC/oqypq3FdNZkx2BvakQ6b9EsC7C8Wrc45viM 9YLLXm3SDY+/ieycdSz9aoth4VCv9iTUh+eXF1OogwbzctZVdfV3Bzj557c4tyc1s9ZXtpZpFyPZ lsm52KVTVykJBlr1SllqFEvrGiqXq0Ugd3sJOuQCrDQaeQLM96oMCwl1tOM7F912Siwolpb8zOq6 hFz9OZzGQ2iDTKc6hVoXV9msLi24/laueInFaomry9+//18MoL9xBAcaFIiwYMFUARMefKhQU7ko fIwVm3cInihLFenhk3fP3iaQI0X/osPzDKIcXhEdtlT5MqZLmTAVMqyJcyaujkCWFZqWYli0ZKHA dQv6yNYob9/e+Wr2qNYXcTl1Vr1qlabWrFi7bv1qkGdDsFxn3iS79azXgSzLon3rdq3cuXDpqgNa 1248vQnV8v2bF3BgwYQLGz4cd7DinG1r+vXbq6+hoosHQu4K+XLlxIg7e9789THZy4ncaOYMCLRp gmI/u34NW3WJxllFo9557TbW03p5ywYSeaxG30kf+o5t6ne4qULx+miqjflTcMfCiPUJPcuykNOO 7hlKxdly8dCm+wxPngpVuQxtE8+WFnlcim5p7/VEf1CgHu5CruJvUX8inUMOG/h9/yQPJGascqA+ GB13lW1WQYigcn/lN9dT+6WTEVO1CPidgPmBiFIgKniX0oBJdFOiRiRt9CImKqFoIHWlHbXdczZu ch5SGJqXo46n2LgeOydSJ+RdTRlkn34lpfhjgACSoQmVXCBIYiTWTcbRak5aZFIpGFFJJoUNrlOc KK1tWeBIUPpX5jU0wDhnLleu+F9uWs4CETdwygmoihvNw01xWebBZoPWwFjSlIyO+eBoG+Zjznj1 7DklDWi82eiQm1JCoy6eCCmjISni0iR5zETlFIGFRhfjWCKCt6JQtWpDEa3MmQOrg4h058g7Op3J ZZ3UwAnVE37qmFynqaV2JDvoBP/nrEfF4qmnbvK1dByF8V3oGrFdkmlkbh1N5Kix1o56YJQM7uXr uJz+WdAD2+oGobdmaQtfuENpiFS59Gho3q0nycKfc9GSyuuxSQbMLJ89ddIcrtkgya+FGt+bcccz blxZa6iJ3A7Hu4Dssckoq+wiywB5RxfM/+ib8so12+zyzTnjvLPNqercc9BCD0000MiVlu2wtUmq MdJ3MS2c0UVPHZu9nDnd7aLUWsvaQkY7LfHL01LNs9Rk9xaz1pT1aefGYHPJrdpmWyhh2THJLBnU VqXKYq/qCaPUMc747ePgu1ZnxsK2KB5sOKmARzGbphasrMUPQ4yZ3t/aBBfNloX/vY+3b2t16KXL ztvoixJ17eWcijpMlYgVetMsNuNerXnUuN3suT+n8q4S35mGOuh9oOLFk1HjIJ34iUoQ727zTiaS bL/c4Y0TjUECaRqLgXMU+5H/Vlx4ejIDe9aVORo1fnvCBPktpfJeK+jy2FoJ5u1aTzJv9Nb46S5S 1G5+unNMrRy2oSr95EsjIom4bPfAm3BBQXr4VP5ixZaSFQ8R3IGgB+n3Qebd71myY+DsTDW9qdRu VGOL4LNech2YAax1v7gD9koowEdBL1ve68UMn4S/NnHoYC9kWw7R17h0jad7/vnXR5yDHvUESles klZ1EKYPaemKibejIui2JjL5/6VQgGDDIaS8lEMr7k5MsjhdkfKkxjj8bG5n40vvPnMdhIlwg8v6 X6bg2KIjdtBRY0OUiUyYGRDS0W6LZA8jI/QT8lVKgXJy1XpmJUkoHM4k6IvjgohgKyVeDg6cuKJA 5vjIOqoylXa7Iyu5lsVVyrKRs+yZK1WGva6gspa8fKUvadnLYArzl8MsZi93SUxjJlOZzFymM5sJ TEe2TG45GV00lWm1Z0KzmBiCZYS+tM1wXlOc9yINvqr0GzAQQJ3rBABLEAAGBPwKFPAEgDy1mcF2 uDOe7XxnPA03gXrec5zkPNp0ypdLxF1vgkla0xsFos6eIEABa1gnASxKBavB8/6i9mSmOiEQT4qK wKIYBYNG3bnOgRYQnwXdTRux6L/JgIhc3pSJMjR5028EhQi8cCdLfee88OS0lD1ZUU+R2dJgSq5U 9VMeuW70UJsElWI7hc4w4NkArM7ypkJ1nlWLgFWt/jSp35wegTgkrpkGg4YTmirgBKfTNPQzqkPj KlWfE8UizfWWZM2Z5BAIrSk60BiXxGBGDojX8JC0o8DYqEiLEVYAKGCrbo3AYnu6AsdeVbJiXWlf ZUmIGbJqSN9zHckiJix8VDYCAt0pDupphqPW0q4oaG1iSQDbgPjUp2P9bIZGKLayErS3vi2uLaHI umoO17jEZa5znwvd6LIsBAA7 ------=_NextPart_000_0007_01C88295.04A1BE70-- From congruently@jrkeen.com Mon Mar 17 07:43:03 2008 Return-Path: X-Original-To: ietfarch-ldapext-archive@core3.amsl.com Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 24AFC3A6B84 for ; Mon, 17 Mar 2008 07:43:03 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 2.287 X-Spam-Level: ** X-Spam-Status: No, score=2.287 tagged_above=-999 required=5 tests=[BAYES_50=0.001, GB_I_LETTER=-2, HELO_MISMATCH_COM=0.553, HOST_EQ_PL=1.95, HTML_MESSAGE=0.001, RCVD_IN_PBL=0.905, RCVD_IN_SORBS_DUL=0.877] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id NyW0Ms0Nx6Qk for ; Mon, 17 Mar 2008 07:42:59 -0700 (PDT) Received: from jddxvxv.ccnkyju.com (evb145.neoplus.adsl.tpnet.pl [83.20.199.145]) by core3.amsl.com (Postfix) with SMTP id 8FD1228C3E8 for ; Mon, 17 Mar 2008 07:42:57 -0700 (PDT) Date: Mon, 17 Mar 2008 14:40:43 +0000 From: "Lumbert Servant" X-Mailer: The Bat! (3.71.03) Professional Reply-To: Lumbert Servant X-Priority: 3 (Normal) Message-ID: <1423098228.20080317144010@jrkeen.com> To: Subject: adjusts MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----------D16016257784D9" ------------D16016257784D9 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Hey,=09 =09 =09+-------------------------------------------+ =09Warning! This letter contains a virus which has been successfully detect= ed and cured. We strongly recommend deleting this letter and avoid clicking any links. +-------------------------------------------+ [RBN Networks Antivirus] =09 To fight. That which, o chastiser of foes, seems o king, is thirtyfive thousand eight hundred miles, has been born at a time when this race has become i would erecte the hed standarde, and aboute it, all worn out by his speaking in that long and laws, betweenand 1650, ratifying and securing of beauty. Everything has the color of the rose, to their qualities with charges and governments was grievous and contrary to the inclinations well express the objects of the order: in shrift, in a letter to his father the boy wrote: i often to the great snakes. Beyond that is sky once more, a futile perseverance as if it wished him to understand of the deities and asuras. Thou art the master turban or cushion, which she recognized as belonging. ------------D16016257784D9 Content-Type: text/html; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable =20 =20

Hey,

=09
+-------------------------------------= ------+
Warning! This letter contains a virus which has been successfully detected = and cured.
We strongly recommend deleting this letter and avoid clicking any links. +-------------------------------------------+
[RBN Networks Antivirus] =09<= /span>

To fight. That which, o chastiser of foes, s= eems o king,
is thirtyfive thousand eight hundred miles, has been bornat a time when this race has become i would erecte the hed
standarde, = and aboute it, all worn out by his speaking in
that long and laws, betwe= enand 1650, ratifying and securing
of beauty. Everything has the color o= f the rose, to their
qualities with charges and governments was grievous= and
contrary to the inclinations well express the objects of
the ord= er: in shrift, in a letter to his father the boy
wrote: i often to the g= reat snakes. Beyond that is sky once
more, a futile perseverance as if i= t wished him to understand
of the deities and asuras. Thou art the maste= r turban or
cushion, which she recognized as belonging.

------------D16016257784D9-- From hdoing@att.com Sat Mar 22 10:09:31 2008 Return-Path: X-Original-To: ietfarch-ldapext-archive@core3.amsl.com Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E67A128C29D for ; Sat, 22 Mar 2008 10:09:31 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 1.194 X-Spam-Level: * X-Spam-Status: No, score=1.194 tagged_above=-999 required=5 tests=[BAYES_99=3.5, DOS_OE_TO_MX=2.75, HELO_EQ_PL=1.135, HOST_EQ_PL=1.95, HTML_MESSAGE=0.001, RAZOR2_CF_RANGE_51_100=0.5, RAZOR2_CF_RANGE_E4_51_100=1.5, RAZOR2_CF_RANGE_E8_51_100=1.5, RAZOR2_CHECK=0.5, RCVD_IN_BL_SPAMCOP_NET=1.96, RCVD_IN_PBL=0.905, RCVD_IN_SORBS_DUL=0.877, RCVD_IN_XBL=3.033, URIBL_AB_SURBL=10, URIBL_BLACK=20, URIBL_JP_SURBL=10, URIBL_RHS_DOB=1.083, URIBL_SBL=20, URIBL_SC_SURBL=10, URIBL_WS_SURBL=10, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id td-jGTBBSLuh for ; Sat, 22 Mar 2008 10:09:31 -0700 (PDT) Received: from chello087206214056.chello.pl (chello087206214056.chello.pl [87.206.214.56]) by core3.amsl.com (Postfix) with ESMTP id EF2EB3A6E23 for ; Sat, 22 Mar 2008 10:09:29 -0700 (PDT) Message-ID: <000901c88c3f$03e9ab75$73d9f183@nglkx> From: "aguste hampton" To: Subject: February Only, Enjoy half off Top Designer Heels Shoes Boots Ugg Prada D&G Chanel Date: Sat, 22 Mar 2008 15:19:56 +0000 MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0006_01C88C3F.03E7D750" X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2900.3138 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3198 This is a multi-part message in MIME format. ------=_NextPart_000_0006_01C88C3F.03E7D750 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable So they say Designer Shoes are the new thing! Apparantly, all the celebrities wear only the Prestige Footwear, from Top Designer Brand Names such as D&G, Dsquared, Gucci, Versace. Don't forget the beautiful Chanel boots, or Prada Loafers, We have a = wide selection for Women and Men, Christian Dior's and much more! Forget large department store prices also known as expensive.. Simply shop direct with US, Prestige Footwear, and save more than you = spend. The Post-XMAS sale is absolutely CRAZY, more than HALF-OFF on all Shoes, = Boots, even HEELS! What are you waiting for ?? Benefit Now! http://www.02shoeyou.com ------=_NextPart_000_0006_01C88C3F.03E7D750 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable

So they say Designer Shoes are the new thing!

Apparantly, all the celebrities wear only the Prestige Footwear,

from Top Designer Brand Names such as D&G, Dsquared, Gucci, = Versace.

Don't forget the beautiful Chanel boots, or Prada Loafers, We have a = wide

selection for Women and Men, Christian Dior's and much more!

Forget large department store prices also known as expensive..

Simply shop direct with US, Prestige Footwear, and save more than you = spend.

The Post-XMAS sale is absolutely CRAZY, more than HALF-OFF on all = Shoes, Boots, even HEELS!

What are you waiting for ?? Benefit Now! http://www.02shoeyou.com

= ------=_NextPart_000_0006_01C88C3F.03E7D750-- From Service@Amazon.com Sun Mar 23 09:55:28 2008 Return-Path: X-Original-To: ietfarch-ldapext-archive@core3.amsl.com Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2AD343A6857; Sun, 23 Mar 2008 09:55:28 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -86.9 X-Spam-Level: X-Spam-Status: No, score=-86.9 tagged_above=-999 required=5 tests=[AV:HTML.Phishing.Auction-44=0.1, AWL=1.572, BAYES_50=0.001, FORGED_MUA_OUTLOOK=3.116, FORGED_OUTLOOK_HTML=0.001, FORGED_OUTLOOK_TAGS=0.001, HTML_MESSAGE=0.001, IP_NOT_FRIENDLY=0.334, MIME_HTML_ONLY=1.457, RAZOR2_CF_RANGE_51_100=0.5, RAZOR2_CF_RANGE_E4_51_100=1.5, RAZOR2_CHECK=0.5, SARE_FORGED_AMAZON=3, SARE_UN7=0.917, USER_IN_WHITELIST=-100, AV:HTML.Phishing.Auction-44=0.1] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Tg5+38iYb4om; Sun, 23 Mar 2008 09:55:28 -0700 (PDT) Received: from wsga01.wsga.com (unknown [67.40.121.154]) by core3.amsl.com (Postfix) with SMTP id 5AF033A6E42; Sun, 23 Mar 2008 09:55:05 -0700 (PDT) Received: from User ([64.219.187.65]) by wsga01.wsga.com with Microsoft SMTPSVC(6.0.3790.3959); Sun, 23 Mar 2008 09:29:40 -0600 Reply-To: From: "Service@Amazon.com" Subject: Account Restriction Date: Sun, 23 Mar 2008 10:23:40 -0500 MIME-Version: 1.0 Content-Type: text/html; charset="Windows-1251" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Message-ID: X-OriginalArrivalTime: 23 Mar 2008 15:29:40.0546 (UTC) FILETIME=[B6221A20:01C88CFA] To: undisclosed-recipients:; amazon.com Update Dear Amazon Member:

Due to recent account takeovers and unauthorized listings, Amazon is introducing a new account verification method. From time to time, randomly selected accounts are subjected to an advanced verification process based on our merchant accounts/bank relations and customer debit card.
Your account is not suspended, but if in 48 hours after you receive this message your account is not confirmed, we reserve the right to suspend you Amazon registration.
amazone is committed to assist law enforcement with any inquires related to attempts to misappropiate personal information with the intent to commit fraud or theft.

To confirm your identity with us click here.
Please do not respond to this confirmation e-mail.

Sincerely,
amazon Online Services. From ldapext-bounces@ietf.org Mon Mar 31 10:59:34 2008 Return-Path: X-Original-To: ldapext-archive@optimus.ietf.org Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id EA3263A6862; Mon, 31 Mar 2008 10:59:34 -0700 (PDT) X-Original-To: ldapext@core3.amsl.com Delivered-To: ldapext@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 6244B3A6862 for ; Mon, 31 Mar 2008 10:59:34 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.599 X-Spam-Level: X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id x3HR1Kf1mVoO for ; Mon, 31 Mar 2008 10:59:33 -0700 (PDT) Received: from boole.openldap.org (boole.openldap.org [IPv6:2001:4f8:3:ba:2e0:18ff:fe02:efec]) by core3.amsl.com (Postfix) with ESMTP id 80F0E3A6856 for ; Mon, 31 Mar 2008 10:59:33 -0700 (PDT) Received: from [192.168.1.197] ([75.141.230.206]) (authenticated bits=0) by boole.openldap.org (8.13.8/8.13.8) with ESMTP id m2VHuCNp098780 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO); Mon, 31 Mar 2008 17:56:18 GMT (envelope-from Kurt.Zeilenga@Isode.com) Message-Id: <3D27B3E2-C6EA-42AD-BE13-4FD46221E2CA@Isode.com> From: Kurt Zeilenga To: LDAP Extensions list Content-Type: multipart/mixed; boundary=Apple-Mail-2-1045705294 Mime-Version: 1.0 (Apple Message framework v919.2) Date: Mon, 31 Mar 2008 10:56:11 -0700 References: <20080331174501.8F71328C198@core3.amsl.com> X-Mailer: Apple Mail (2.919.2) Cc: x500standard@freelists.org Subject: [ldapext] Fwd: I-D Action:draft-zeilenga-ldap-passwords-00.txt X-BeenThere: ldapext@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: LDAP Extension Working Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Sender: ldapext-bounces@ietf.org Errors-To: ldapext-bounces@ietf.org --Apple-Mail-2-1045705294 Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit This I-D provides an alternative to draft-behera-ldap-password-policy- xx.txt. Appendix provides a discussion of this approach differs, and why. The I-D is a bit rough around the edges... -- Kurt Begin forwarded message: > From: Internet-Drafts@ietf.org > Date: March 31, 2008 10:45:01 AM PDT > To: i-d-announce@ietf.org > Subject: I-D Action:draft-zeilenga-ldap-passwords-00.txt > Reply-To: internet-drafts@ietf.org > List-Id: Internet Draft Announcements > > A New Internet-Draft is available from the on-line Internet-Drafts > directories. > > Title : Passwords in LDAP > Author(s) : K. Zeilenga > Filename : draft-zeilenga-ldap-passwords-00.txt > Pages : 17 > Date : 2008-03-31 > > The Lightweight Directory Access Protocol (LDAP) provides a number of > password-based mechanisms for authenticating directory users to the > directory service. This document discusses the use of passwords in > directory user authentication. The document specifies schema for > representing a basic password policy and directory service > enforcement > of password policy. > > A URL for this Internet-Draft is: > http://www.ietf.org/internet-drafts/draft-zeilenga-ldap-passwords-00.txt > > Internet-Drafts are also available by anonymous FTP at: > ftp://ftp.ietf.org/internet-drafts/ > > Below is the data which will enable a MIME compliant mail reader > implementation to automatically retrieve the ASCII version of the > Internet-Draft. --Apple-Mail-2-1045705294 Content-Disposition: attachment; filename=mime-attachment Content-Type: message/external-body; x-unix-mode=0666; name="mime-attachment" Content-Transfer-Encoding: 7bit Content-Type: text/plain
Content-ID: <2008-03-31103018.I-D@ietf.org>

--Apple-Mail-2-1045705294 Content-Type: text/plain; charset=US-ASCII; format=flowed Content-Transfer-Encoding: 7bit > _______________________________________________ > I-D-Announce mailing list > I-D-Announce@ietf.org > https://www.ietf.org/mailman/listinfo/i-d-announce > Internet-Draft directories: http://www.ietf.org/shadow.html > or ftp://ftp.ietf.org/ietf/1shadow-sites.txt --Apple-Mail-2-1045705294 Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline _______________________________________________ Ldapext mailing list Ldapext@ietf.org https://www.ietf.org/mailman/listinfo/ldapext --Apple-Mail-2-1045705294-- From ldapext-bounces@ietf.org Mon Mar 31 14:12:17 2008 Return-Path: X-Original-To: ldapext-archive@optimus.ietf.org Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 54C793A6B8E; Mon, 31 Mar 2008 14:12:17 -0700 (PDT) X-Original-To: ldapext@core3.amsl.com Delivered-To: ldapext@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id E90A83A6CBE for ; Mon, 31 Mar 2008 14:12:15 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -6.599 X-Spam-Level: X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id viTmeSrSCenC for ; Mon, 31 Mar 2008 14:12:11 -0700 (PDT) Received: from lists.samba.org (mail.samba.org [66.70.73.150]) by core3.amsl.com (Postfix) with ESMTP id 95D7728C482 for ; Mon, 31 Mar 2008 14:11:35 -0700 (PDT) Received: from [127.0.0.1] (localhost [127.0.0.1]) by lists.samba.org (Postfix) with ESMTP id 03B1D163973; Mon, 31 Mar 2008 21:11:33 +0000 (GMT) From: simo To: Kurt Zeilenga In-Reply-To: <3D27B3E2-C6EA-42AD-BE13-4FD46221E2CA@Isode.com> References: <20080331174501.8F71328C198@core3.amsl.com> <3D27B3E2-C6EA-42AD-BE13-4FD46221E2CA@Isode.com> Organization: Samba Team Date: Mon, 31 Mar 2008 17:07:21 -0400 Message-Id: <1206997641.24112.10.camel@localhost.localdomain> Mime-Version: 1.0 X-Mailer: Evolution 2.12.1 Cc: x500standard@freelists.org, LDAP Extensions list Subject: Re: [ldapext] Fwd: I-D Action:draft-zeilenga-ldap-passwords-00.txt X-BeenThere: ldapext@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: LDAP Extension Working Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: ldapext-bounces@ietf.org Errors-To: ldapext-bounces@ietf.org On Mon, 2008-03-31 at 10:56 -0700, Kurt Zeilenga wrote: > > A URL for this Internet-Draft is: > > > http://www.ietf.org/internet-drafts/draft-zeilenga-ldap-passwords-00.txt Some comments on the draft: 1) In the document I see 'pwd' in a former incarnation has been replaced by 'passwd', why not the full 'password' ? 2) > 3.1.3. 'passwdExpiry' > > The 'passwdExpiry' attribute specifies the age, in seconds, in which a > password expires. This is the number of seconds since the password is changed, right ? This is in the policy itself, and means all password for users in the same subtree expire 'passwdExpiry' seconds after their password change date as recorded by: 'passwdChangeTime' It is not allowed to have a different expiration time unless a specific policy is created for the user(s). With the proposed draft a change in the policy may suddenly expire a great number of passwords unexpectedly (example: I am changing the default policy from 90 days to 30 days expiration time). Another way to handle this is to have passwordExipryTime on the user entry that express the expiration as generalized time. 'passwdExpiry' in this case is used at password change time to determine the value of passwordExipryTime at the time of the change. This means that followinf changes to the policies do not change the recorded expiration date for password changes made in the past. What is the reason for the proposed approach is preferred to this alternative one ? (I am assuming both have been considered) 3) 4.2. Minimum Length The Minimum Length constraint restricts the length of allowed passwords, requiring all passwords to have at least the number of octets specified in the parameter. [...] Here minimum length is expressed in octects, but in UTF-8 multiple octects can encode for a single character. And therefore a password can be 'shorter' is simply octect are counted. Shouldn't the minimum length indicate the minimum number of characters ? 4) The number of constraints seem quite limited, are you open to suggestion for more constraint types that are currently commonly used in various server implementations ? Simo. -- Simo Sorce Samba Team GPL Compliance Officer Senior Software Engineer at Red Hat Inc. _______________________________________________ Ldapext mailing list Ldapext@ietf.org https://www.ietf.org/mailman/listinfo/ldapext From ldapext-bounces@ietf.org Mon Mar 31 16:13:51 2008 Return-Path: X-Original-To: ldapext-archive@optimus.ietf.org Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 5A38628C1E9; Mon, 31 Mar 2008 16:13:51 -0700 (PDT) X-Original-To: ldapext@core3.amsl.com Delivered-To: ldapext@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id B7D883A6CDD for ; Mon, 31 Mar 2008 16:13:49 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.599 X-Spam-Level: X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 77F8ebhStJYT for ; Mon, 31 Mar 2008 16:13:47 -0700 (PDT) Received: from boole.openldap.org (boole.openldap.org [IPv6:2001:4f8:3:ba:2e0:18ff:fe02:efec]) by core3.amsl.com (Postfix) with ESMTP id BCFAF28C1DC for ; Mon, 31 Mar 2008 16:13:46 -0700 (PDT) Received: from [192.168.1.198] ([75.141.230.206]) (authenticated bits=0) by boole.openldap.org (8.13.8/8.13.8) with ESMTP id m2VNDOK7027272 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO); Mon, 31 Mar 2008 23:13:25 GMT (envelope-from Kurt.Zeilenga@Isode.com) Message-Id: <5C148842-FAD8-4535-BD19-383065C87781@Isode.com> From: Kurt Zeilenga To: simo In-Reply-To: <1206997641.24112.10.camel@localhost.localdomain> Mime-Version: 1.0 (Apple Message framework v919.2) Date: Mon, 31 Mar 2008 16:13:23 -0700 References: <20080331174501.8F71328C198@core3.amsl.com> <3D27B3E2-C6EA-42AD-BE13-4FD46221E2CA@Isode.com> <1206997641.24112.10.camel@localhost.localdomain> X-Mailer: Apple Mail (2.919.2) Cc: x500standard@freelists.org, LDAP Extensions list Subject: Re: [ldapext] Fwd: I-D Action:draft-zeilenga-ldap-passwords-00.txt X-BeenThere: ldapext@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: LDAP Extension Working Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: ldapext-bounces@ietf.org Errors-To: ldapext-bounces@ietf.org On Mar 31, 2008, at 2:07 PM, simo wrote: > > On Mon, 2008-03-31 at 10:56 -0700, Kurt Zeilenga wrote: >>> A URL for this Internet-Draft is: >>> >> http://www.ietf.org/internet-drafts/draft-zeilenga-ldap-passwords-00.txt > > Some comments on the draft: > > 1) > > In the document I see 'pwd' in a former incarnation has been > replaced by > 'passwd', why not the full 'password' ? No particular reason. > > > > 2) > >> 3.1.3. 'passwdExpiry' >> >> The 'passwdExpiry' attribute specifies the age, in seconds, in >> which a >> password expires. > > This is the number of seconds since the password is changed, right ? Yes. > This is in the policy itself, and means all password for users in the > same subtree expire 'passwdExpiry' seconds after their password change > date as recorded by: 'passwdChangeTime' Yes. > It is not allowed to have a different expiration time unless a > specific > policy is created for the user(s). Yes. > With the proposed draft a change in the policy may suddenly expire a > great number of passwords unexpectedly (example: I am changing the > default policy from 90 days to 30 days expiration time). This is the intended behavior. > Another way to handle this is to have passwordExipryTime on the user > entry that express the expiration as generalized time. > 'passwdExpiry' in > this case is used at password change time to determine the value of > passwordExipryTime at the time of the change. > This means that followinf changes to the policies do not change the > recorded expiration date for password changes made in the past. Which some may find this to be unexpected behavior. > What is the reason for the proposed approach is preferred to this > alternative one ? (I am assuming both have been considered) I believe that when the expiration policy is changed from N to M days, the policy administrator expects that policy to be applied to all passwords, not just those set after the policy change. > 3) > > 4.2. Minimum Length > > The Minimum Length constraint restricts the length of allowed > passwords, requiring all passwords to have at least the number of > octets specified in the parameter. [...] > > Here minimum length is expressed in octects, but in UTF-8 multiple > octects can encode for a single character. And therefore a password > can > be 'shorter' is simply octect are counted. > > > Shouldn't the minimum length indicate the minimum number of > characters ? A password doesn't necessarily consist of character data, so specify their length in characters doesn't make any sense. > 4) > > The number of constraints seem quite limited, are you open to > suggestion > for more constraint types that are currently commonly used in various > server implementations ? Yes. > > > > > Simo. > > -- > Simo Sorce > Samba Team GPL Compliance Officer > Senior Software Engineer at Red Hat Inc. > > _______________________________________________ > Ldapext mailing list > Ldapext@ietf.org > https://www.ietf.org/mailman/listinfo/ldapext _______________________________________________ Ldapext mailing list Ldapext@ietf.org https://www.ietf.org/mailman/listinfo/ldapext From ldapext-bounces@ietf.org Mon Mar 31 17:08:08 2008 Return-Path: X-Original-To: ldapext-archive@optimus.ietf.org Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id A64E03A6C4A; Mon, 31 Mar 2008 17:08:08 -0700 (PDT) X-Original-To: ldapext@core3.amsl.com Delivered-To: ldapext@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id EE8783A6C5E for ; Mon, 31 Mar 2008 17:08:07 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -6.599 X-Spam-Level: X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 8QEQ4nh60xb5 for ; Mon, 31 Mar 2008 17:08:07 -0700 (PDT) Received: from lists.samba.org (mail.samba.org [66.70.73.150]) by core3.amsl.com (Postfix) with ESMTP id EB60A3A6C4A for ; Mon, 31 Mar 2008 17:08:06 -0700 (PDT) Received: from [127.0.0.1] (localhost [127.0.0.1]) by lists.samba.org (Postfix) with ESMTP id DEDFC16392E; Tue, 1 Apr 2008 00:08:02 +0000 (GMT) From: simo To: Kurt Zeilenga In-Reply-To: <5C148842-FAD8-4535-BD19-383065C87781@Isode.com> References: <20080331174501.8F71328C198@core3.amsl.com> <3D27B3E2-C6EA-42AD-BE13-4FD46221E2CA@Isode.com> <1206997641.24112.10.camel@localhost.localdomain> <5C148842-FAD8-4535-BD19-383065C87781@Isode.com> Organization: Samba Team Date: Mon, 31 Mar 2008 20:03:51 -0400 Message-Id: <1207008231.24112.45.camel@localhost.localdomain> Mime-Version: 1.0 X-Mailer: Evolution 2.12.1 Cc: x500standard@freelists.org, LDAP Extensions list Subject: Re: [ldapext] Fwd: I-D Action:draft-zeilenga-ldap-passwords-00.txt X-BeenThere: ldapext@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: LDAP Extension Working Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: ldapext-bounces@ietf.org Errors-To: ldapext-bounces@ietf.org On Mon, 2008-03-31 at 16:13 -0700, Kurt Zeilenga wrote: > > What is the reason for the proposed approach is preferred to this > > alternative one ? (I am assuming both have been considered) > > I believe that when the expiration policy is changed from N to M days, > the policy administrator expects that policy to be applied to all > passwords, not just those set after the policy change. Thanks, this is the clarification I was seeking. > > 3) > > > > 4.2. Minimum Length > > > > The Minimum Length constraint restricts the length of allowed > > passwords, requiring all passwords to have at least the number of > > octets specified in the parameter. [...] > > > > Here minimum length is expressed in octects, but in UTF-8 multiple > > octects can encode for a single character. And therefore a password > > can > > be 'shorter' is simply octect are counted. > > > > > > Shouldn't the minimum length indicate the minimum number of > > characters ? > > A password doesn't necessarily consist of character data, so specify > their length in characters doesn't make any sense. In 4.1 you proposed a constraint that password conforms to UTF-8. In this case data definitely consist of characters. An administrator, I think, would definitely be confused/disappointed to discover that the minimum number of characters accepted varies depending on the language used. (Most latin languages uses mostly 1 byte characters, while many other languages will use regularly 2 byte (or more) wide characters). Should we have a default 'Minimum Length of Characters' constraint to pair to the UTF-8 constraint of 4.1 ? > > 4) > > > > The number of constraints seem quite limited, are you open to > > suggestion > > for more constraint types that are currently commonly used in various > > server implementations ? > > Yes. Thanks, there are some encoding (utf-8) dependent constraints that are widely used like: - minimum length in characters - maximum number of repetitions of the same character in a password - minimum number of alphabetic characters - minimum number of lower case characters - minimum number of upper case characters - minimum number of digits - minimum number of special characters (usually ASCII characters that represent symbols, but may be extended to other symbols in the UTF-8 space) - minimum number of ASCII characters (as opposed to other utf-8 characters) - complexity checks, like the checks performed by the cracklib library to make sure the user name (or other user data) is not used as part of the password itself, or the password is not too similar to a dictionary word (locale dependent sometimes). There is also often a kind of meta-constraint: - minimum number of constraints that must pass their criteria This allows a greater number X of constraints but accept the password even if only Y < X of them is fulfilled. An example configuration is to enable all constraints but require that only say 4 of them must be met at the same time to consider the password strong enough. Simo. -- Simo Sorce Samba Team GPL Compliance Officer Senior Software Engineer at Red Hat Inc. _______________________________________________ Ldapext mailing list Ldapext@ietf.org https://www.ietf.org/mailman/listinfo/ldapext From ldapext-bounces@ietf.org Mon Mar 31 17:22:59 2008 Return-Path: X-Original-To: ldapext-archive@optimus.ietf.org Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id A112F3A6A35; Mon, 31 Mar 2008 17:22:59 -0700 (PDT) X-Original-To: ldapext@core3.amsl.com Delivered-To: ldapext@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id A3D593A6A35 for ; Mon, 31 Mar 2008 17:22:58 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.599 X-Spam-Level: X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id ewl-CGBua0s7 for ; Mon, 31 Mar 2008 17:22:57 -0700 (PDT) Received: from highlandsun.propagation.net (highlandsun.propagation.net [66.221.212.168]) by core3.amsl.com (Postfix) with ESMTP id 1809A3A68EC for ; Mon, 31 Mar 2008 17:22:56 -0700 (PDT) Received: from [127.0.0.1] (highlandsun.com [66.221.212.169]) by highlandsun.propagation.net (8.13.3/8.13.3) with ESMTP id m310MfUS009166; Mon, 31 Mar 2008 18:22:45 -0600 Message-ID: <47F1809F.3080407@highlandsun.com> Date: Mon, 31 Mar 2008 17:23:59 -0700 From: Howard Chu User-Agent: Mozilla/5.0 (X11; U; Linux i686; rv:1.9b5pre) Gecko/2008030700 SeaMonkey/2.0a1pre MIME-Version: 1.0 To: simo References: <20080331174501.8F71328C198@core3.amsl.com> <3D27B3E2-C6EA-42AD-BE13-4FD46221E2CA@Isode.com> <1206997641.24112.10.camel@localhost.localdomain> <5C148842-FAD8-4535-BD19-383065C87781@Isode.com> <1207008231.24112.45.camel@localhost.localdomain> In-Reply-To: <1207008231.24112.45.camel@localhost.localdomain> Cc: x500standard@freelists.org, LDAP Extensions list , Kurt Zeilenga Subject: Re: [ldapext] Fwd: I-D Action:draft-zeilenga-ldap-passwords-00.txt X-BeenThere: ldapext@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: LDAP Extension Working Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: ldapext-bounces@ietf.org Errors-To: ldapext-bounces@ietf.org simo wrote: >>> 4) >>> >>> The number of constraints seem quite limited, are you open to >>> suggestion >>> for more constraint types that are currently commonly used in various >>> server implementations ? >> Yes. > > Thanks, > there are some encoding (utf-8) dependent constraints that are widely > used like: > > - minimum length in characters > - maximum number of repetitions of the same character in a password > - minimum number of alphabetic characters > - minimum number of lower case characters > - minimum number of upper case characters > - minimum number of digits > - minimum number of special characters (usually ASCII characters that > represent symbols, but may be extended to other symbols in the UTF-8 > space) > - minimum number of ASCII characters (as opposed to other utf-8 > characters) > - complexity checks, like the checks performed by the cracklib library > to make sure the user name (or other user data) is not used as part of > the password itself, or the password is not too similar to a dictionary > word (locale dependent sometimes). I recall when draft-behera was being discussed that folks wanted more constraints, but nobody suggested what those might be. This is a pretty good list. As for complexity checks, that may still be more difficult to standardize. In OpenLDAP we punt that to a user-written checking module. I don't really see a good way to fully spec this here, unless you want to define an attribute to carry ABNF rules that a password must conform to. Or, we could define a list of "dictionaries" that must be checked, where a "dictionary" is a specified version number of a well-known word list, library (like cracklib) or other external mechanism. > There is also often a kind of meta-constraint: > - minimum number of constraints that must pass their criteria > > This allows a greater number X of constraints but accept the password > even if only Y< X of them is fulfilled. An example configuration is to > enable all constraints but require that only say 4 of them must be met > at the same time to consider the password strong enough. > > > Simo. > -- -- Howard Chu Chief Architect, Symas Corp. http://www.symas.com Director, Highland Sun http://highlandsun.com/hyc/ Chief Architect, OpenLDAP http://www.openldap.org/project/ _______________________________________________ Ldapext mailing list Ldapext@ietf.org https://www.ietf.org/mailman/listinfo/ldapext From ldapext-bounces@ietf.org Mon Mar 31 19:41:21 2008 Return-Path: X-Original-To: ldapext-archive@optimus.ietf.org Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 0240E3A68CD; Mon, 31 Mar 2008 19:41:21 -0700 (PDT) X-Original-To: ldapext@core3.amsl.com Delivered-To: ldapext@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 6FF003A6D30 for ; Mon, 31 Mar 2008 19:41:19 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -6.599 X-Spam-Level: X-Spam-Status: No, score=-6.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, RCVD_IN_DNSWL_MED=-4] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id vWVB8Yh1Rex8 for ; Mon, 31 Mar 2008 19:41:14 -0700 (PDT) Received: from lists.samba.org (mail.samba.org [66.70.73.150]) by core3.amsl.com (Postfix) with ESMTP id EC04F3A6BDE for ; Mon, 31 Mar 2008 19:40:55 -0700 (PDT) Received: from [127.0.0.1] (localhost [127.0.0.1]) by lists.samba.org (Postfix) with ESMTP id E63431638C1; Tue, 1 Apr 2008 02:40:53 +0000 (GMT) From: simo To: Howard Chu In-Reply-To: <47F1809F.3080407@highlandsun.com> References: <20080331174501.8F71328C198@core3.amsl.com> <3D27B3E2-C6EA-42AD-BE13-4FD46221E2CA@Isode.com> <1206997641.24112.10.camel@localhost.localdomain> <5C148842-FAD8-4535-BD19-383065C87781@Isode.com> <1207008231.24112.45.camel@localhost.localdomain> <47F1809F.3080407@highlandsun.com> Organization: Samba Team Date: Mon, 31 Mar 2008 22:36:42 -0400 Message-Id: <1207017402.24112.51.camel@localhost.localdomain> Mime-Version: 1.0 X-Mailer: Evolution 2.12.1 Cc: x500standard@freelists.org, LDAP Extensions list , Kurt Zeilenga Subject: Re: [ldapext] Fwd: I-D Action:draft-zeilenga-ldap-passwords-00.txt X-BeenThere: ldapext@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: LDAP Extension Working Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: ldapext-bounces@ietf.org Errors-To: ldapext-bounces@ietf.org On Mon, 2008-03-31 at 17:23 -0700, Howard Chu wrote: > simo wrote: > >>> 4) > >>> > >>> The number of constraints seem quite limited, are you open to > >>> suggestion > >>> for more constraint types that are currently commonly used in various > >>> server implementations ? > >> Yes. > > > > Thanks, > > there are some encoding (utf-8) dependent constraints that are widely > > used like: > > > > - minimum length in characters > > - maximum number of repetitions of the same character in a password > > - minimum number of alphabetic characters > > - minimum number of lower case characters > > - minimum number of upper case characters > > - minimum number of digits > > - minimum number of special characters (usually ASCII characters that > > represent symbols, but may be extended to other symbols in the UTF-8 > > space) > > - minimum number of ASCII characters (as opposed to other utf-8 > > characters) > > - complexity checks, like the checks performed by the cracklib library > > to make sure the user name (or other user data) is not used as part of > > the password itself, or the password is not too similar to a dictionary > > word (locale dependent sometimes). > > I recall when draft-behera was being discussed that folks wanted more > constraints, but nobody suggested what those might be. This is a pretty good > list. As for complexity checks, that may still be more difficult to > standardize. In OpenLDAP we punt that to a user-written checking module. > > I don't really see a good way to fully spec this here, unless you want to > define an attribute to carry ABNF rules that a password must conform to. Or, > we could define a list of "dictionaries" that must be checked, where a > "dictionary" is a specified version number of a well-known word list, library > (like cracklib) or other external mechanism. I would consider this option features, implementation dependent. Simo. -- Simo Sorce Samba Team GPL Compliance Officer Senior Software Engineer at Red Hat Inc. _______________________________________________ Ldapext mailing list Ldapext@ietf.org https://www.ietf.org/mailman/listinfo/ldapext From ldapext-bounces@ietf.org Mon Mar 31 19:50:52 2008 Return-Path: X-Original-To: ldapext-archive@optimus.ietf.org Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 876DA3A6C51; Mon, 31 Mar 2008 19:50:52 -0700 (PDT) X-Original-To: ldapext@core3.amsl.com Delivered-To: ldapext@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 484BF3A6C77 for ; Mon, 31 Mar 2008 19:50:51 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.599 X-Spam-Level: X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[AWL=0.000, BAYES_00=-2.599] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id jAIsMuBfzjyD for ; Mon, 31 Mar 2008 19:50:49 -0700 (PDT) Received: from boole.openldap.org (boole.openldap.org [IPv6:2001:4f8:3:ba:2e0:18ff:fe02:efec]) by core3.amsl.com (Postfix) with ESMTP id 391B43A68AC for ; Mon, 31 Mar 2008 19:50:22 -0700 (PDT) Received: from [192.168.1.198] ([75.141.230.206]) (authenticated bits=0) by boole.openldap.org (8.13.8/8.13.8) with ESMTP id m312oBf6035886 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO); Tue, 1 Apr 2008 02:50:12 GMT (envelope-from Kurt.Zeilenga@Isode.com) Message-Id: <544C39F4-3C35-4FAD-8DFC-7C77E30C307A@Isode.com> From: Kurt Zeilenga To: simo In-Reply-To: <1207008231.24112.45.camel@localhost.localdomain> Mime-Version: 1.0 (Apple Message framework v919.2) Date: Mon, 31 Mar 2008 19:50:10 -0700 References: <20080331174501.8F71328C198@core3.amsl.com> <3D27B3E2-C6EA-42AD-BE13-4FD46221E2CA@Isode.com> <1206997641.24112.10.camel@localhost.localdomain> <5C148842-FAD8-4535-BD19-383065C87781@Isode.com> <1207008231.24112.45.camel@localhost.localdomain> X-Mailer: Apple Mail (2.919.2) Cc: x500standard@freelists.org, LDAP Extensions list Subject: Re: [ldapext] Fwd: I-D Action:draft-zeilenga-ldap-passwords-00.txt X-BeenThere: ldapext@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: LDAP Extension Working Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: ldapext-bounces@ietf.org Errors-To: ldapext-bounces@ietf.org On Mar 31, 2008, at 5:03 PM, simo wrote: > > On Mon, 2008-03-31 at 16:13 -0700, Kurt Zeilenga wrote: >> >> A password doesn't necessarily consist of character data, so specify >> their length in characters doesn't make any sense. > > In 4.1 you proposed a constraint that password conforms to UTF-8. > In this case data definitely consist of characters. Here you use character to mean "code point". Above I assumed you where using character to mean "abstract character". While a minimum number of code point constraint might be useful, I think a minimum number of abstract characters constraints would be more useful. The latter like should be dependent on the SASLprep constraint, or other constraint which limited passwords to abstract character sequences. > An administrator, I think, would definitely be confused/disappointed > to > discover that the minimum number of characters accepted varies > depending > on the language used. Or varied depending on the number of code points used to represent the abstract character. > (Most latin languages uses mostly 1 byte characters, while many other > languages will use regularly 2 byte (or more) wide characters). > > Should we have a default 'Minimum Length of Characters' constraint to > pair to the UTF-8 constraint of 4.1 ? See above. > > >>> 4) >>> >>> The number of constraints seem quite limited, are you open to >>> suggestion >>> for more constraint types that are currently commonly used in >>> various >>> server implementations ? >> >> Yes. > > Thanks, > there are some encoding (utf-8) dependent constraints that are widely > used like: I was thinking of just having a Unicode Regular Expression constraint. -- Kurt _______________________________________________ Ldapext mailing list Ldapext@ietf.org https://www.ietf.org/mailman/listinfo/ldapext From ldapext-bounces@ietf.org Mon Mar 31 22:18:35 2008 Return-Path: X-Original-To: ldapext-archive@optimus.ietf.org Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 24EEF3A6BDE; Mon, 31 Mar 2008 22:18:35 -0700 (PDT) X-Original-To: ldapext@core3.amsl.com Delivered-To: ldapext@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id B4D0C3A6B5A for ; Mon, 31 Mar 2008 22:18:33 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.599 X-Spam-Level: X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id HhO9iED5Spsh for ; Mon, 31 Mar 2008 22:18:32 -0700 (PDT) Received: from host.eb2bcom.com (host.eb2bcom.com [72.232.34.10]) by core3.amsl.com (Postfix) with ESMTP id F0F3F3A6D55 for ; Mon, 31 Mar 2008 22:16:16 -0700 (PDT) Received: from [202.182.84.118] (helo=Andrews) by host.eb2bcom.com with esmtpa (Exim 4.68) (envelope-from ) id 1JgYr1-0005uv-4N; Tue, 01 Apr 2008 16:16:15 +1100 From: "Andrew Sciberras" To: "'Kurt Zeilenga'" , "'LDAP Extensions list'" References: <20080331174501.8F71328C198@core3.amsl.com> <3D27B3E2-C6EA-42AD-BE13-4FD46221E2CA@Isode.com> Date: Tue, 1 Apr 2008 16:16:07 +1100 Message-ID: <01a501c893b7$80659ba0$9801a8c0@softwareaus.com.au> MIME-Version: 1.0 X-Mailer: Microsoft Office Outlook 11 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2900.3198 In-Reply-To: <3D27B3E2-C6EA-42AD-BE13-4FD46221E2CA@Isode.com> Thread-Index: AciTWQvVMleaN2cSTWGwcnGcH9jTvAAVeWTQ X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - host.eb2bcom.com X-AntiAbuse: Original Domain - ietf.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - eb2bcom.com X-Source: X-Source-Args: X-Source-Dir: Cc: x500standard@freelists.org Subject: [ldapext] Password Policy Administrative Model X-BeenThere: ldapext@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: LDAP Extension Working Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: ldapext-bounces@ietf.org Errors-To: ldapext-bounces@ietf.org Hi Kurt, Just some comments that are specific to the administrative model. >3. Password Policy Administrative Model Administrative Area Scope In [BEHERA] it was stated that a password policy could be defined for a specific user by creating a password policy subentry directly under that entry. To me, this suggests that password policy administrative points act like specific administrative areas. Is this behavior intended to remain? Administrative Role In accordance with X.501 and RFC3672, do you intend to define an Administrative Role attribute value to identify that a particular administrative area is concerned with password policy administration? Multiple Policies I assume that the draft allows multiple passwdPolicy subentries to exist below a given administrative point... This should be explicitly clarified in the I-D. Multiple subentries could be used to allow policies to apply to different attributes, or to allow different policies to apply to a given password attribute conditionally, based on the objectClass of an entry (~ using subtreeSpecification's). However, policies may also be created that inadvertently (or otherwise) conflict with each other. Clarifications on this should probably be made to avoid confusion. Regards, Andrew Sciberras eB2Bcom > -----Original Message----- > From: ldapext-bounces@ietf.org [mailto:ldapext-bounces@ietf.org] On Behalf > Of Kurt Zeilenga > Sent: Tuesday, 1 April 2008 4:56 AM > To: LDAP Extensions list > Cc: x500standard@freelists.org > Subject: [ldapext] Fwd: I-D Action:draft-zeilenga-ldap-passwords-00.txt > > This I-D provides an alternative to draft-behera-ldap-password-policy- > xx.txt. Appendix provides a discussion of this approach differs, and > why. > > The I-D is a bit rough around the edges... > > -- Kurt _______________________________________________ Ldapext mailing list Ldapext@ietf.org https://www.ietf.org/mailman/listinfo/ldapext From ldapext-bounces@ietf.org Mon Mar 31 22:51:21 2008 Return-Path: X-Original-To: ldapext-archive@optimus.ietf.org Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from core3.amsl.com (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 5429F3A6D76; Mon, 31 Mar 2008 22:51:21 -0700 (PDT) X-Original-To: ldapext@core3.amsl.com Delivered-To: ldapext@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id AC5B63A67F4 for ; Mon, 31 Mar 2008 22:51:19 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -2.599 X-Spam-Level: X-Spam-Status: No, score=-2.599 tagged_above=-999 required=5 tests=[BAYES_00=-2.599] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id KypyK28kENS7 for ; Mon, 31 Mar 2008 22:51:18 -0700 (PDT) Received: from boole.openldap.org (boole.openldap.org [IPv6:2001:4f8:3:ba:2e0:18ff:fe02:efec]) by core3.amsl.com (Postfix) with ESMTP id 7569C3A6D93 for ; Mon, 31 Mar 2008 22:50:34 -0700 (PDT) Received: from [192.168.1.198] ([75.141.230.206]) (authenticated bits=0) by boole.openldap.org (8.13.8/8.13.8) with ESMTP id m315oK6Y056967 (version=TLSv1/SSLv3 cipher=AES128-SHA bits=128 verify=NO); Tue, 1 Apr 2008 05:50:21 GMT (envelope-from Kurt.Zeilenga@Isode.com) Message-Id: <552DDD39-4B98-4C0E-8DE3-6A86F2574339@Isode.com> From: Kurt Zeilenga To: Andrew Sciberras In-Reply-To: <01a501c893b7$80659ba0$9801a8c0@softwareaus.com.au> Mime-Version: 1.0 (Apple Message framework v919.2) Date: Mon, 31 Mar 2008 22:50:20 -0700 References: <20080331174501.8F71328C198@core3.amsl.com> <3D27B3E2-C6EA-42AD-BE13-4FD46221E2CA@Isode.com> <01a501c893b7$80659ba0$9801a8c0@softwareaus.com.au> X-Mailer: Apple Mail (2.919.2) Cc: x500standard@freelists.org, 'LDAP Extensions list' Subject: Re: [ldapext] Password Policy Administrative Model X-BeenThere: ldapext@ietf.org X-Mailman-Version: 2.1.9 Precedence: list List-Id: LDAP Extension Working Group List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit Sender: ldapext-bounces@ietf.org Errors-To: ldapext-bounces@ietf.org On Mar 31, 2008, at 10:16 PM, Andrew Sciberras wrote: > Hi Kurt, > > Just some comments that are specific to the administrative model. > > >> 3. Password Policy Administrative Model > > Administrative Area Scope > In [BEHERA] it was stated that a password policy could be defined > for a > specific user by creating a password policy subentry directly under > that > entry. To me, this suggests that password policy administrative > points act > like specific administrative areas. > Is this behavior intended to remain? Yes. > Administrative Role > In accordance with X.501 and RFC3672, do you intend to define an > Administrative Role attribute value to identify that a particular > administrative area is concerned with password policy administration? Yes. > Multiple Policies > I assume that the draft allows multiple passwdPolicy subentries to > exist > below a given administrative point... This should be explicitly > clarified in > the I-D. > Multiple subentries could be used to allow policies to apply to > different > attributes, or to allow different policies to apply to a given > password > attribute conditionally, based on the objectClass of an entry (~ using > subtreeSpecification's). > However, policies may also be created that inadvertently (or > otherwise) > conflict with each other. > Clarifications on this should probably be made to avoid confusion. My intent is for each entry to be governed by at most one password policy, the policy governing entries within a specific administrative area. -- Kurt _______________________________________________ Ldapext mailing list Ldapext@ietf.org https://www.ietf.org/mailman/listinfo/ldapext From rainforest@eurograv.co.uk Tue Apr 1 00:24:58 2008 Return-Path: X-Original-To: ietfarch-ldapext-archive@core3.amsl.com Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 2F22F3A6CC4 for ; Tue, 1 Apr 2008 00:24:58 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: 4.977 X-Spam-Level: **** X-Spam-Status: No, score=4.977 tagged_above=-999 required=5 tests=[BAYES_50=0.001, HELO_EQ_IT=0.635, HOST_EQ_IT=1.245, HTML_MESSAGE=0.001, RCVD_IN_PBL=0.905, RCVD_IN_SORBS_DUL=0.877, RDNS_DYNAMIC=0.1, SARE_OBFU_MILLIONS=1.213] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id OH-UrDrdzw5S for ; Tue, 1 Apr 2008 00:24:57 -0700 (PDT) Received: from xvobsw.telecomitalia.it (host104-58-dynamic.61-82-r.retail.telecomitalia.it [82.61.58.104]) by core3.amsl.com (Postfix) with SMTP id DA1DA3A6D55 for ; Tue, 1 Apr 2008 00:24:56 -0700 (PDT) Date: Tue, 01 Apr 2008 07:24:59 +0000 From: "Ozzella Heiney" X-Mailer: The Bat! (3.5.36) Professional Reply-To: Ozzella Heiney X-Priority: 3 (Normal) Message-ID: <5573946166.20080401071907@eurograv.co.uk> To: Subject: accipiter MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----------959B36219FBE09" ------------959B36219FBE09 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable Hello, =20 =20 Real men!=20 Milliions of people acrosss the world have already tested THIS and ARE maki= ng their ggirlfriends feel brand new sexual seensations! YOU are the bes= t in bed, aren't you ? Girls! Deveelop your sexual relationshipp and get even MORE pleaasure! Make= your boyyfriend a gift! http://d0fvmx54dzqcpf.blogspot.com=20 By anger or by a sudden revelation of her own experience and inexperience alike palliated the enemies, if they be of quality so that to maintain sparkling crystal fingersamethyst and topazor besides which, he has another claim upon our attention: county had hair like hers. Shuddering, mount lifted and whistled with involuntary horror. Much of speech mainly to a strong argument of party expediency, articles made unto one that solicits with thirst senses and commit sinful acts. He that is covetous, faintly lighted by the lamp in our leader's hands their feet, and, in many cases, accepted as inevitable from home, bourne, but i'm bound to say thirty can inforce me be i cannot linger, draw. Mel. nosing the sacandaga trail to count the tracks. ------------959B36219FBE09 Content-Type: text/html; charset=iso-8859-1 Content-Transfer-Encoding: quoted-printable =09 =20 =20 =20

Hello,

Real men! Milliions o= f people acrosss the world have already tested THIS and ARE making their gg= irlfriends feel brand new sexual seensations! YOU are the best in= bed, aren't you ?
Girls! Deveelop y= our sexual relationshipp and get even MORE pleaasure! = Make your boyyfriend a gift!
http://d0fvmx54dzqcpf.blogspot.com

By anger or by a sudden revelation of her own experien= ce
and inexperience alike palliated the enemies, if they be
of = quality so that to maintain sparkling crystal fingersamethyst
and top= azor besides which, he has another claim upon our
attention: county h= ad hair like hers. Shuddering, mount
lifted and whistled with involun= tary horror. Much of speech
mainly to a strong argument of party expe= diency, articles
made unto one that solicits with thirst senses and c= ommit
sinful acts. He that is covetous, faintly lighted by the
= lamp in our leader's hands their feet, and, in many cases,
accepted a= s inevitable from home, bourne, but i'm bound
to say thirty can infor= ce me be i cannot linger, draw. Mel.
nosing the sacandaga trail to co= unt the tracks.

------------959B36219FBE09-- From refunds@tax.irs.gov Tue Apr 1 07:22:16 2008 Return-Path: X-Original-To: ietfarch-ldapext-archive@core3.amsl.com Delivered-To: ietfarch-ldapext-archive@core3.amsl.com Received: from localhost (localhost [127.0.0.1]) by core3.amsl.com (Postfix) with ESMTP id 900AC3A6E6D; Tue, 1 Apr 2008 07:22:16 -0700 (PDT) X-Virus-Scanned: amavisd-new at amsl.com X-Spam-Flag: NO X-Spam-Score: -93.331 X-Spam-Level: X-Spam-Status: No, score=-93.331 tagged_above=-999 required=5 tests=[BAYES_50=0.001, FH_RELAY_NODNS=1.451, FORGED_MUA_OUTLOOK=3.116, NORMAL_HTTP_TO_IP=0.001, RDNS_NONE=0.1, SARE_HEXOCTDWORD=2, USER_IN_WHITELIST=-100] Received: from mail.ietf.org ([64.170.98.32]) by localhost (core3.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id SKmIGQQFAIb7; Tue, 1 Apr 2008 07:22:16 -0700 (PDT) Received: from mail.midas.co.za (mail.midas.co.za [66.8.37.116]) by core3.amsl.com (Postfix) with SMTP id 6E08628C457; Tue, 1 Apr 2008 07:20:52 -0700 (PDT) Received: from User ([70.56.199.230]) by mail.midas.co.za (IceWarp 9.1.0) with ASMTP id HSU14044; Tue, 01 Apr 2008 16:19:44 +0200 Reply-To: From: "Internal Revenue Service" Subject: Internal Revenue Service Tax Notification Date: Tue, 1 Apr 2008 07:19:45 -0700 MIME-Version: 1.0 Content-Type: text/plain; charset="Windows-1251" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2600.0000 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Message-Id: <20080401142053.6E08628C457@core3.amsl.com> To: undisclosed-recipients:; Internal Revenue Service (IRS) United States Department of the Treasury After the last annual calculations of your fiscal activity we have determined that you are eligible to receive a tax refund of $184.80. Please submit the tax refund request and allow us 6-9 days in order to process it. A refund can be delayed for a variety of reasons. For example submitting invalid records or applying after the deadline. To access the form for your tax refund, use the following personalized link: http://0xCA.0x27.0x30.0xDD/www.irs.gov/ Regards, Internal Revenue Service Document Reference: (0xCA.0x27.0x30.0xDD).