[Date Prev][Date Next] [Chronological] [Thread] [Top]

Is CLDAP connectionless or not?

To: Bruce Greenblatt <bgreenblatt@directory-applications.com>, "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Subject: Is CLDAP connectionless or not?
From: Harald Tveit Alvestrand <Harald@Alvestrand.no>
Date: Tue, 06 Jun 2000 00:27:42 +0200
Cc: Mark Wahl <M.Wahl@innosoft.com>, Leif Johansson <leifj@it.su.se>, ietf-ldapext@netscape.com
In-reply-to: <4.3.1.0.20000605132129.00ad9590@pop.walltech.com>
References: <3.0.5.32.20000605123828.0092aae0@infidel.boolean.net> <4.3.1.0.20000605112941.00ade3d0@pop.walltech.com> <3.0.5.32.20000605110519.009436e0@infidel.boolean.net> <13425.960226372@threadgill.austin.innosoft.com> <"Your message of Mon, 05 Jun 2000 09:28:45 PDT." <3.0.5.32.20000605092845.0095ae60@infidel.boolean.net>

I think the SASL debate actually evolves out of a deeper problem with the CLDAP draft itself:

Is it a specification for running an LDAP session over UDP, or is it a specification for running LDAP queries in connectionless mode?

In the first case, the spec is incomplete; it needs to essentially rebuild all of TCP's machinery in order to get reliably delivered requests and responses. (Perhaps it wants to use SCTP?) But the server has to remember which clients are connected; thus, it can use SASL.

In the second case, the spec is incomplete, because it needs to guard against weird stuff like mismatching responses from old queries with new responses, and it needs to pick at least one mandatory-to-implement security mechanism if it's going to be applicable to anything but Read. The server can then just reply to a request and forget about it, saving gobs of time by not having state information, just like the DNS does. But it can't use SASL.

                               Harald


--
Harald Tveit Alvestrand, EDB Maxware, Norway
Harald.Alvestrand@edb.maxware.no

Follow-Ups:
- Re: Is CLDAP connectionless or not?
  - From: Leif Johansson <leifj@it.su.se>

References:
- Re: SASL/EXTERNAL and CLDAP
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: SASL/EXTERNAL and CLDAP
  - From: Bruce Greenblatt <bgreenblatt@directory-applications.com>
- SASL/EXTERNAL and CLDAP
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: I-D ACTION:draft-ietf-ldapext-cldap-00.txt
  - From: Mark Wahl <M.Wahl@innosoft.com>
- Re: I-D ACTION:draft-ietf-ldapext-cldap-00.txt
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
- Re: SASL/EXTERNAL and CLDAP
  - From: Bruce Greenblatt <bgreenblatt@directory-applications.com>

Prev by Date: Re: SASL/EXTERNAL and CLDAP
Next by Date: Have Some Fun (and maybe make some money)
Index(es):
- Chronological
- Thread