On Apr 15, 2005, at 09:42, Dziugas Baltrunas wrote:
Hi Paul,
On MM4 authorisation, that had put that on a back burner. The reason for this is that it wasn't clear how to implement it. Must the sender use authenticated smtp? How does info get passed on to mbuni?
I know that MMS standards provide no clear definicions on that, but I see two ways here. One way would be to use standard SMTP AUTH protocol and another way would be to assign IP address (or list of them) to each of the VASPS, so IP address of connecting party matches, HTTP basic (in case of MM7) or SMTP AUTH (in case of MM4) authorization could be skipped then.
IP limiting is definitely a good thing to add to the MM7 interface at least. The concern on the MM4 side is SMTP intergration. We had avoided a full-blown SMTP protocol implementation, but then integrating Mbuni into an existing SMTP server brings its own issues (how that SMTP server passes on the AUTH info or IP of originator reliably, etc). I guess the real question was: What's a clean, simple way to do this... Debate...
-- Dziugas
_______________________________________________ Devel mailing list Devel@mbuni.org http://mbuni.org/mailman/listinfo/devel_mbuni.org
_______________________________________________ Devel mailing list Devel@mbuni.org http://mbuni.org/mailman/listinfo/devel_mbuni.org