Found 1 record.
Status: Verified (1)
RFC 4013, "SASLprep: Stringprep Profile for User Names and Passwords", February 2005
Note: This RFC has been obsoleted by RFC 7613Source of RFC: sasl (sec)
Errata ID: 1812
Publication Format(s) : TEXT
Reported By: Alexey Melnikov
Date Reported: 2009-07-18
Verifier Name: Sean Turner
Date Verified: 2010-04-19
Section 2.3 says:
This profile specifies the following characters as prohibited input:
It should say:
This profile specifies the following characters as prohibited output:
Per RFC 3454, the check for prohibited characters is done after the "Map" and "Normalize" steps. Characters listed here are actually allowed as inputs if they get removed by the "Map" or "Normalize" steps.