[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: (ITS#5812) New option to disable SASL host canonicalization

To: openldap-its@OpenLDAP.org
Subject: Re: (ITS#5812) New option to disable SASL host canonicalization
From: rra@stanford.edu
Date: Thu, 20 Nov 2008 23:32:37 GMT

Howard Chu <hyc@symas.com> writes:

> The real problem is that the standard POSIX gethost/getaddr* APIs don't
> tell you the confidence level of the information they return. Nor do
> they let you specify a minimum acceptable confidence level when you make
> a query. (Analogous to the SSFs we use in OpenLDAP.)

Yeah, that would be great.  There are, unfortunately, a bunch of problems
with those interfaces.  Blocking behavior is another problem with them.

-- 
Russ Allbery (rra@stanford.edu)             <http://www.eyrie.org/~eagle/>

Prev by Date: Re: (ITS#5812) New option to disable SASL host canonicalization
Next by Date: (ITS#5823) clients/tools don't honor ldap.conf defaults
Index(es):
- Chronological
- Thread