Martin Hoffmann writes: > we came across an issue where a client expects an unexpired nonce to be > flaged by the stale=true flag in the Digest Authenticate header field. is that specified in some rfc or elsewhere? -- juha