On Sun, 2008-03-16 at 14:54 +0000, Alexey Melnikov wrote: > >>In some cases, the server MAY refuse to save a SEARCH (SAVE) > >> result, for example if an internal limit on the number of saved > >> results is reached. > >> > >> > >I don't see the point, it just complicates the protocol. > > > Some reviewers wanted to have a way to handle DoS on SEARCHRES gracefully. > > While this is allowed, it is up to server implementors to decide if the > server should ever do that. I just don't see how this can be considered a DoS in any way. If server thinks there are too many SEARCHRES results stored, it shouldn't have allowed the user to log in that many times. I can think of a lot easier ways to DoS an IMAP compliant server than it. Wonder how much memory a server would take parsing a 10MB mail with maximal number of MIME parts, or something similar.. > Folks, the document is past AUTH48 already. Why do I always read these too late.. :)
Attachment:
signature.asc
Description: This is a digitally signed message part