Re: IPP> possible compromise?
Keith Moore <moore@cs.utk.edu> Wed, 15 July 1998 19:45 UTC
Delivery-Date: Wed, 15 Jul 1998 15:46:06 -0400
Return-Path: ipp-owner@pwg.org
Received: from cnri.reston.va.us (ns [132.151.1.1])
by ietf.org (8.8.5/8.8.7a) with ESMTP id PAA23614
for <ietf-archive@ietf.org>; Wed, 15 Jul 1998 15:45:55 -0400 (EDT)
Received: from lists.underscore.com (uscore-1.mv.com [199.125.85.30])
by cnri.reston.va.us (8.8.5/8.8.7a) with ESMTP id PAA16905
for <ietf-archive@cnri.reston.va.us>; Wed, 15 Jul 1998 15:45:52 -0400 (EDT)
Received: from localhost (daemon@localhost) by lists.underscore.com
(8.7.5/8.7.3) with SMTP id PAA01514 for <ietf-archive@cnri.reston.va.us>;
Wed, 15 Jul 1998 15:45:52 -0400 (EDT)
Received: by pwg.org (bulk_mailer v1.5); Wed, 15 Jul 1998 15:41:21 -0400
Received: (from daemon@localhost) by lists.underscore.com (8.7.5/8.7.3) id
PAA00343 for ipp-outgoing; Wed, 15 Jul 1998 15:33:05 -0400 (EDT)
Message-Id: <199807151930.PAA17234@spot.cs.utk.edu>
X-URI: http://www.cs.utk.edu/~moore/
From: Keith Moore <moore@cs.utk.edu>
To: imcdonal@eso.mc.xerox.com (Ira Mcdonald x10962)
cc: harryl@us.ibm.com, moore@cs.utk.edu, ipp@pwg.org, moore@cs.utk.edu
Subject: Re: IPP> possible compromise?
In-reply-to: Your message of "Wed, 15 Jul 1998 09:31:52 PDT."
<9807151631.AA02673@snorkel.eso.mc.xerox.com>
Date: Wed, 15 Jul 1998 15:30:50 -0400
Sender: owner-ipp@pwg.org
> I think it's useful to note that even LDAPv3 has recently been > permitted to publish standards track RFCs WITHOUT any security > mechanism (and a rather naive note that suggests read-only > implementations). The LDAPv3 case was a little odd. LDAPv2 was already out there without any useful security. For various reasons, we wanted to encourage people to move to LDAPv3, and LDAPv3 wasn't any worse security-wise than LDAPv2. The IESG note was the carrot part of the compromise that was worked out. The stick was that the LDAP folks were supposed to do security before anything else. It didn't work very well; they drug their feet about security. > I maintain that even a read-only implementation of LDAPv3 without > any security (for read) is a good deal more dangerous in the > business liability and exposure sense that an implementation > of IPP without any security in some printers is. Obviously it depends on what information you're making available through LDAPv3, and whether you're just doing so within your enterprise vs. exporting it to the rest of the world. Keith
- IPP> possible compromise? Keith Moore
- Re: IPP> possible compromise? Robert Herriot
- Re: IPP> possible compromise? Keith Moore
- RE: IPP> possible compromise? Larry Masinter
- Re: IPP> possible compromise? Harry Lewis
- Re: IPP> possible compromise? Keith Moore
- Re: IPP> possible compromise? Ira Mcdonald x10962
- Re: IPP> possible compromise? Keith Moore
- Re: IPP> possible compromise? Harry Lewis