Re: ietf-nntp My notes from the NNTP WG meeting at the 37thIETF
Chris Lewis <clewis@nortel.ca> Sat, 21 December 1996 06:08 UTC
Received: from cnri by ietf.org id ad09214; 21 Dec 96 1:08 EST
Received: from ACADEM2.ACADEM.COM by CNRI.Reston.VA.US id aa19369;
20 Dec 96 15:22 EST
Received: (from majordomo@localhost) by academ2.academ.com (8.8.3/8.7.3) id
OAA20661 for ietf-nntp-outgoing; Fri, 20 Dec 1996 14:17:31 -0600 (CST)
X-Authentication-Warning: academ2.academ.com: majordomo set sender to
owner-ietf-nntp using -f
Received: from academ.com (root@ACADEM.COM [198.137.249.2]) by
academ2.academ.com (8.8.3/8.7.3) with ESMTP id OAA20656 for
<ietf-nntp@ACADEM2.ACADEM.COM>; Fri, 20 Dec 1996 14:17:29 -0600 (CST)
Received: from bcarsbf5.localhost (x400bnr.nortel.ca [192.58.194.78]) by
academ.com (8.8.3/8.7.1) with ESMTP id OAA06701 for <ietf-nntp@academ.com>;
Fri, 20 Dec 1996 14:17:27 -0600 (CST)
Message-Id: <199612202017.OAA06701@academ.com>
Received: from bcarsfba.ott.bnr.ca by bcarsbf5.localhost;
Fri, 20 Dec 1996 15:16:26 -0500
Received: from bnr.ca by bcarsfba.bnr.ca id <19414-0@bcarsfba.bnr.ca>;
Fri, 20 Dec 1996 15:05:34 -0500
Date: 20 Dec 1996 13:14 EST
To: ietf-nntp@academ.com
From: Chris Lewis <clewis@nortel.ca>
Subject: Re: ietf-nntp My notes from the NNTP WG meeting at the 37thIETF
Sender: owner-ietf-nntp@academ.com
Precedence: bulk
In message "Re: ietf-nntp My notes from the NNTP WG meeting at the 37thIETF", 'NatBa@MICROSOFT.com' writes: >Actually - no. It seems the Netscape server accepts AUTHINFO USER without >an AUTHINFO PASS, but does nothing with the AUTHINFO USER. I believe most >servers have a set of newsgroups that can be viewed without any >authentication >- so it's reasonable for the Netscape server to do what it does. INN does >the same thing. In any case, without a password, the AUTHINFO USER command >is useless, and servers will not accept it. If they did, I could spoof >others. Particularly with the AUTHINFO GENERIC specification, the protocol is perfectly capable of allowing a user to see some groups, then see a different group (usually a superset) after authentication. The generic authenticators sin both INN and NNTP reference return a list of groups the user is allowed to use. Brian? Does the Netscape server or browser support GENERIC? -- Chris Lewis, Senior Network Security Analyst, Nortel. clewis@nortel.ca; Dept 4C16, Ottawa, Canada. (613) 763-2935.
- Re: ietf-nntp My notes from the NNTP WG meeting a… Nat Ballou
- Re: ietf-nntp My notes from the NNTP WG meeting a… Nat Ballou
- Re: ietf-nntp My notes from the NNTP WG meeting a… Jack De Winter
- Re: ietf-nntp My notes from the NNTP WG meeting a… Rich Salz
- Re: ietf-nntp My notes from the NNTP WG meeting a… Rich Salz
- Re: ietf-nntp My notes from the NNTP WG meeting a… Chris Lewis
- Re: ietf-nntp My notes from the NNTP WG meeting a… Brian Hernacki
- Re: ietf-nntp My notes from the NNTP WG meeting a… Brian Hernacki
- Re: ietf-nntp My notes from the NNTP WG meeting a… Jack De Winter
- Re: ietf-nntp My notes from the NNTP WG meeting a… Nat Ballou
- Re: ietf-nntp My notes from the NNTP WG meeting a… Chris Newman
- Re: ietf-nntp My notes from the NNTP WG meeting a… Jack De Winter
- Re: ietf-nntp My notes from the NNTP WG meeting a… Jack De Winter
- Re: ietf-nntp My notes from the NNTP WG meeting a… Nat Ballou
- Re: ietf-nntp My notes from the NNTP WG meeting a… Jack De Winter
- Re: ietf-nntp My notes from the NNTP WG meeting a… Chris Lewis
- Re: ietf-nntp My notes from the NNTP WG meeting a… Jack De Winter