[Date Prev][Date Next]
[Chronological]
[Thread]
[Top]
Re: C API: minor comments
2251 does not restrict clients from using message id 0, since it was really
a client behavior: if your client always does a Bind for its first message,
it would be able to distinguish between a Extended Response and a Bind
Response. However to avoid implementors of the C API from introducing a
subtle problem into their client library, since they don't know what order
clients will make requests, I propose:
- the C API just state that the values SHOULD be nonzero.., without any
requirement that it be a counter
- we plan that a forthcoming draft on the mapping of LDAP over UDP (CLDAPv3)
should include a statement on the security impact of message IDs, and
debate the issue of message ID spoofing in that context
Mark Wahl, Directory Product Architect
Innosoft International, Inc.