Re: IPP> possible compromise?

Keith Moore (moore@cs.utk.edu)
Wed, 15 Jul 1998 15:30:50 -0400

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Bennett, Joel H: "RE: IPP> ipp: / http: in the UI"
• Previous message: Stuart Rowley: "IPP> Question about Job Template attributes"
• Maybe in reply to: Keith Moore: "IPP> possible compromise?"
• Next in thread: Harry Lewis: "Re: IPP> possible compromise?"

> I think it's useful to note that even LDAPv3 has recently been
> permitted to publish standards track RFCs WITHOUT any security
> mechanism (and a rather naive note that suggests read-only
> implementations).

The LDAPv3 case was a little odd. LDAPv2 was already out there
without any useful security. For various reasons, we wanted
to encourage people to move to LDAPv3, and LDAPv3 wasn't any
worse security-wise than LDAPv2. The IESG note was the
carrot part of the compromise that was worked out. The stick
was that the LDAP folks were supposed to do security before
anything else. It didn't work very well; they drug their
feet about security.

> I maintain that even a read-only implementation of LDAPv3 without
> any security (for read) is a good deal more dangerous in the
> business liability and exposure sense that an implementation
> of IPP without any security in some printers is.

Obviously it depends on what information you're making available
through LDAPv3, and whether you're just doing so within your
enterprise vs. exporting it to the rest of the world.

Keith

• Next message: Bennett, Joel H: "RE: IPP> ipp: / http: in the UI"
• Previous message: Stuart Rowley: "IPP> Question about Job Template attributes"
• Maybe in reply to: Keith Moore: "IPP> possible compromise?"
• Next in thread: Harry Lewis: "Re: IPP> possible compromise?"

Comments are owned by the poster. All other material is Copyright © 2001-2024 The Printer Working Group. All rights reserved. IPP Everywhere, the IPP Everywhere logo, and the PWG logo are trademarks of the IEEE-ISTO.
About the PWG · Privacy Policy · PWG Webmaster