[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Syntaxes draft on directory updates

To: <h.b.furuseth@usit.uio.no>, <ietf-ldapbis@OpenLDAP.org>
Subject: Re: Syntaxes draft on directory updates
From: "Roger Harrison" <RHARRISON@novell.com>
Date: Tue, 03 Dec 2002 13:02:19 -0700
Content-disposition: inline

If this is a requirement (and it appears to be so based on the use of the MUST), what constitutes "strong authentication"?  Is that defined somewhere?  The AuthMeth draft already has the following security consideration:
 
"Servers are encouraged to prevent modifications by anonymous users. "

Perhaps that is sufficient.

Roger

>>> Hallvard B Furuseth 11/25/2002 3:09:39 PM >>>
draft-ietf-ldapbis-syntaxes-03.txt says:

> 5.3 Securing the Directory
> 
> In order to protect the directory and its contents, strong 
> authentication MUST have been used to identify the Client when an 
> update operation is requested.

That seems a strange place to put this information.
I think it belongs in the Protocol draft.

-- 
Hallvard

Follow-Ups:
- Re: Syntaxes draft on directory updates
  - From: Hallvard B Furuseth <h.b.furuseth@usit.uio.no>

Prev by Date: Re: TLS closure and outstanding operations
Next by Date: LDAPBIS WG Description update / call for review
Index(es):
- Chronological
- Thread