[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: C API: minor comments

To: Mark Smith <mcs@netscape.com>
Subject: Re: C API: minor comments
From: Mark Wahl <M.Wahl@INNOSOFT.COM>
Date: Tue, 16 Nov 1999 14:00:42 -0600
Cc: "Paul Leach (Exchange)" <paulle@Exchange.Microsoft.com>, howes@yahoo.com, "Andy Herron (Exchange)" <andyhe@Exchange.Microsoft.com>, "Anoop Anantha (Exchange)" <anoopa@Exchange.Microsoft.com>, kurt@OpenLDAP.Org, ietf-ldapext@netscape.com
In-reply-to: "Your message of Tue, 16 Nov 1999 14:50:31 EST." <3831B587.7DB56145@netscape.com>
Resent-date: Tue, 16 Nov 1999 12:01:18 -0800 (PST)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"Fu3uTB.A.RLB.GgbM4"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

2251 does not restrict clients from using message id 0, since it was really
a client behavior: if your client always does a Bind for its first message,
it would be able to distinguish between a Extended Response and a Bind 
Response.  However to avoid implementors of the C API from introducing a 
subtle problem into their client library, since they don't know what order
clients will make requests, I propose:
 - the C API just state that the values SHOULD be nonzero.., without any 
   requirement that it be a counter
 - we plan that a forthcoming draft on the mapping of LDAP over UDP (CLDAPv3) 
   should include a statement on the security impact of message IDs, and 
   debate the issue of message ID spoofing in that context

Mark Wahl, Directory Product Architect
Innosoft International, Inc.

Follow-Ups:
- Re: C API: minor comments
  - From: "Kurt D. Zeilenga" <kurt@boolean.net>
- Re: C API: minor comments
  - From: Mark Smith <mcs@netscape.com>

References:
- Re: C API: minor comments
  - From: Mark Smith <mcs@netscape.com>

Prev by Date: RE: Details on TCP sequence numbers (RE: C API: minor comments)
Next by Date: RE: AuthzIDs or DNs, but not both
Index(es):
- Chronological
- Thread