[Date Prev][Date Next] [Chronological] [Thread] [Top]

RE: Policy in IETF APIs (was: Standards and APIs)

To: "Paul Leach (Exchange)" <paulle@Exchange.Microsoft.com>, 'Howard Chu' <hyc@highlandsun.com>, "'ietf-ldapext@netscape.com'" <ietf-ldapext@netscape.com>
Subject: RE: Policy in IETF APIs (was: Standards and APIs)
From: "Paul Leach (Exchange)" <paulle@Exchange.Microsoft.com>
Date: Thu, 18 Nov 1999 23:07:32 -0800
Resent-date: Thu, 18 Nov 1999 23:07:45 -0800 (PST)
Resent-from: ietf-ldapext@netscape.com
Resent-message-id: <"Ax1MGC.A.rJE.5cPN4"@glacier>
Resent-sender: ietf-ldapext-request@netscape.com

Title: RE: Policy in IETF APIs (was: Standards and APIs)

> -----Original Message-----
> From: Paul Leach (Exchange)
> Sent: Thursday, November 18, 1999 8:13 PM
>
> > Finally - the client side of any client-server relation is
> > almost always the
> > wrong place to be trying to enforce policy of any kind.
>
> The only kind of policy that should and must be handled at
> the client is policy that protects the client against servers
> and the network. Servers can and should protect themselves.
> That's the only kind of policy I'm advocating having the LDAP
> API implementation handle.

A clarification (dangling pronoun) -- the kind of policy I want the client to handle is the policy that protects the users/clients against servers and the network, not the servers protecting themselves from users/clients or the network.

Paul

Prev by Date: RE: Policy in IETF APIs (was: Standards and APIs)
Next by Date: RE: LDAPsubentry
Index(es):
- Chronological
- Thread