I know, this discussion is barely coupled to ongoing development, but
because I like to participate in creating admirable plans, I don't want
to miss it :-))
"Buchanan, Stuart" wrote:
> 2) Account holders have a key generated based on their call-sign (*). This
> is transmitted with the MP position data. The MP server uses it to
> authenticate the user. MP server doesn't need to check against the LDAP
> directory.
I believe it is essential to verify a key against the directory because
otherwise you won't be able neither to check if the key really belongs
to the account holder nor to verify if it's still valid.
I think the validity of a key has to be verified against the directory
from time to time using a fixed interval.
Cheers,
Martin.
--
Unix _IS_ user friendly - it's just selective about who its friends are !
--------------------------------------------------------------------------
-------------------------------------------------------------------------
Take Surveys. Earn Cash. Influence the Future of IT
Join SourceForge.net's Techsay panel and you'll get the chance to share your
opinions on IT & business topics through brief surveys -- and earn cash
http://www.techsay.com/default.php?page=join.php&p=sourceforge&CID=DEVDEV
_______________________________________________
Flightgear-devel mailing list
Flightgear-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/flightgear-devel
