Does anybody know if, using an SSL connection rather than password
substitution (and therefore passing a clear password in the IBMSUBSPW
negotiation) "long" passwords under PWDLVL >= 2 present a problem?
I know that password substitution requires a new algorithm for PWDLVL >=
2, but then again, password substitution (even with the old algorithm)
is a much bigger pain in the butt than simply securing the whole
connection via SSL.