> -----Original Message-----
> From: Paul Leach (Exchange)
> Sent: Thursday, November 18, 1999 8:13 PM
>
> > Finally - the client side of any client-server relation is
> > almost always the
> > wrong place to be trying to enforce policy of any kind.
>
> The only kind of policy that should and must be handled at
> the client is policy that protects the client against servers
> and the network. Servers can and should protect themselves.
> That's the only kind of policy I'm advocating having the LDAP
> API implementation handle.
A clarification (dangling pronoun) -- the kind of policy I want the client to handle is the policy that protects the users/clients against servers and the network, not the servers protecting themselves from users/clients or the network.
Paul