On Wed, Jun 27, 2001 at 11:09:21AM -0700, Ian Clarke wrote: > On Wed, Jun 27, 2001 at 02:06:04PM +0200, Oskar Sandberg wrote: > > > > You are rapidly converging on the real thing. > > I don't see any reason why we might need to converge any more than some > form of handshake to ensure that the client is authorized, certainly any > form of encryption is totally unnescessary. > > > Secure access is not necessary for a client, > > It is if the client is to include commands such as "ShutDown" which is > what started this converation. > > > and should never be made a required part of the > > spec, > > Authentication of some form should definitely be required prior to the > execution of commands like ShutDown or DumpDataStore. > > > using the the FNP sessions does not complicate things for normal > > client developers. > > Not sure what you mean by this. Requiring that client authors speak FNP > is definitely a complication (just ask Steven Hazel).
Why in the world would client authors need to write clients to perform these administrative tasks anyway? We just bundle a tool with Fred for shutting down the node, etc., that does the secured FNP connection to the local FCP port. -- # tavin cole # # "Technology is a way of organizing the universe so that # man doesn't have to experience it." # # - Max Frisch _______________________________________________ Devl mailing list Devl at freenetproject.org http://lists.freenetproject.org/mailman/listinfo/devl
