[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: AuthzIDs or DNs, but not both

To: "Paul Leach (Exchange)" <paulle@Exchange.Microsoft.com>, "'Kurt D. Zeilenga'" <Kurt@OpenLDAP.Org>, "Curtin, William" <curtinw@ftm.disa.mil>
Subject: Re: AuthzIDs or DNs, but not both
From: Bob Blakley <blakley@dascom.com>
Date: Mon, 15 Nov 1999 17:01:36 -0600
Cc: "Curtin, William" <curtinw@ftm.disa.mil>, ietf-ldapext@netscape.com
Resent-date: Mon, 15 Nov 1999 14:59:03 -0800 (PST)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"jZKqY.A.hpD.uAJM4"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

Title: RE: AuthzIDs or DNs, but not both

Paul writes:

>If this is going to prove such a bother, I would just prefer that

>the whole authzid thing got yanked. I think its a bad idea to let

>anyone (even an admin) just declare that they want to be someone

>else. A bad idea in that I think its ripe for security abuse.

I feel some sympathy for this proposal. Is anyone using authzid?

--bob

Bob Blakley (blakley@dascom.com)
Chief Scientist, Dascom

BEGIN:VCARD
VERSION:2.1
N:Blakley;Bob
FN:Bob Blakley
ORG:Dascom
TITLE:Chief Scientist
TEL;WORK;VOICE:+1 (512) 458-4037 x 5012
TEL;WORK;FAX:+1 (512) 458-2377
ADR;WORK;ENCODING=QUOTED-PRINTABLE:;;Plaza Balcones=0D=0A5515 Balcones Drive;Austin;TX;78731;USA
LABEL;WORK;ENCODING=QUOTED-PRINTABLE:Plaza Balcones=0D=0A5515 Balcones Drive=0D=0AAustin, TX 78731=0D=0AUSA
URL:
URL:http://www.dascom.com
EMAIL;PREF;INTERNET:blakley@dascom.com
REV:19991115T230136Z
END:VCARD

Follow-Ups:
- Re: AuthzIDs or DNs, but not both
  - From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.Org>

Prev by Date: Re: AuthzIDs or DNs, but not both
Next by Date: Re: C API: minor comments
Index(es):
- Chronological
- Thread