[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Policy in IETF APIs (was: Standards and APIs)

To: "'Kurt D. Zeilenga'" <Kurt@OpenLDAP.Org>
Subject: RE: Policy in IETF APIs (was: Standards and APIs)
From: "Paul Leach (Exchange)" <paulle@Exchange.Microsoft.com>
Date: Thu, 18 Nov 1999 16:25:28 -0800
Cc: ietf-ldapext@netscape.com
Resent-date: Thu, 18 Nov 1999 16:25:46 -0800 (PST)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"m5mnWC.A.fHG.AkJN4"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com


> -----Original Message-----
> From: Kurt D. Zeilenga [mailto:Kurt@OpenLDAP.Org]
> Sent: Thursday, November 18, 1999 4:13 PM

> 
> At 04:01 PM 11/18/99 -0800, Paul Leach (Exchange) wrote: 
> > The kind of admin I was talking about is one who has authority
> > over what the Directory User can do.
> 
> This may not be same admin who has authority over what information
> is published by the Directories to which the user has been authorized
> to obtain information from.  That is, one admin may have authority
> over what information is published to the user and another admin
> may have authority over how that information is used.  This
> policy scenerio is quite common.

So? The above observation, although correct, is not relevant to the proposal
I made.

It could even be a third admin who is worried about the security of their
site, and they're the one that gets to say that plaintext passwords are not
to be used by any user, Directory User or otherwise.

Paul

Follow-Ups:
- RE: Policy in IETF APIs (was: Standards and APIs)
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.Org>

Prev by Date: RE: Policy in IETF APIs (was: Standards and APIs)
Next by Date: RE: Policy in IETF APIs (was: Standards and APIs)
Index(es):
- Chronological
- Thread