[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Question re: requirement S3

To: <rmoats@xxxxxxxxxx>, <rweiser@xxxxxxxxxxxxxxx>, <rvh@xxxxxxxxxxxxxxx>, <ejstokes@xxxxxxxxxx>
Subject: Question re: requirement S3
From: "Ed Reed" <eer@xxxxxxxxxxxxx>
Date: Thu, 28 Feb 2002 07:01:55 -0700
Cc: <ietf-ldup@xxxxxxx>
List-archive: <http://www.imc.org/ietf-ldup/mail-archive/>
List-id: <ietf-ldup.imc.org>
List-unsubscribe: <mailto:ietf-ldup-request@imc.org?body=unsubscribe>
Sender: owner-ietf-ldup@xxxxxxxxxxxx

Uppili and I are working on updating the Architecture document (!) and have a question about requirement S3 - The protocol MUST also support the initialization of anonymous replication sessions.

Politely, are you sure?  We would much rather strictly prohibit acceptance of LDUP replication sessions over unauthenticated anonymous connections.  (of course, there's nothing to prevent someone from trying to initiate one, I suppose, but there certainly ought not be any requirement to accept one).

Why is there any reason for any server to ever accept anonymous assertion of replica changes it is supposed to send or receive?

Your clarification will be greatly appreciated.  In the meantime, the architecture document will continue to require authentication for all replication sessions.

Ed and Uppili

=================
Ed Reed
Reed-Matthews, Inc.
+1 585 624 2402
http://www.Reed-Matthews.COM
Note:  Area code is 585

Prev by Date: Re: Replication Management - Some questions on the Information Model
Next by Date: Re: Replication Management - Some questions on the Information Model
Previous by thread: Re: Replication Management - Some questions on the Information Model
Next by thread: Re: Question re: requirement S3
Index(es):
- Date
- Thread