[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: I-D ACTION:draft-ietf-ldapext-cldap-00.txt

To: ietf-ldapext@netscape.com
Subject: Re: I-D ACTION:draft-ietf-ldapext-cldap-00.txt
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Thu, 01 Jun 2000 08:26:37 -0700
In-reply-to: <200006011031.GAA18453@ietf.org>

Additional comments:

The document should be updated to use RFC 2119 terminology
statement.  I will assume it uses MUST, SHOULD per 2119.

Section 2:
> Encoded packets must be small enough to fit inside a datagram
> no bigger than the size of the MTU of the transport mechanism."

Why the MUST?  Would the protocol not work if the MTU was
exceeded?  I would think SHOULD would sufficient... with a
statement as to why (ip fragmentation?).

Section 4:
> Therefore the application using CLDAPv3 have to handle packet loss.

And duplication.  And reorderring.

> One way of aiding this would be to add something like a
> packet sequence number in the PDUs sent from the server
> to the client, how this is to be done is outside the scope
> of this document.

I would argue that this complete within the scope of this
document and should be addressed in the I-D.

In addition the draft should address issues regarding the
association (or lack thereof) of a session to a particular
client.

> They (servers) must also check the version field of the LDAP PDU

An LDAP PDU does not have a version request.


> 6. Security considerations

Given SASL/TLS are designed for connection-oriented application
protocols, I suggest looking into use of IPSEC transport mode
to provide security services.

Follow-Ups:
- Re: I-D ACTION:draft-ietf-ldapext-cldap-00.txt
  - From: Leif Johansson <leifj@it.su.se>

References:
- I-D ACTION:draft-ietf-ldapext-cldap-00.txt
  - From: Internet-Drafts@ietf.org

Prev by Date: Re: I-D ACTION:draft-ietf-ldapext-cldap-00.txt
Next by Date: SLP Schema OIDs
Index(es):
- Chronological
- Thread