[Ntop-dev] New ntop commit (author burton)

Wed, 04 Dec 2002 10:40:08 -0800 

Update of /export/home/ntop/ntop
In directory jabber:/tmp/cvs-serv26082

Modified Files:
        globals-report.h globals.h ntop.h main.c webInterface.c http.c 
Log Message:

P3P is a W3C recommendation - http://www.w3.org/TR/P3P/ - for specifying how an 
application
(typically a web site) handles personally identifiably information.  What information 
the
site collects and what it does with the information.

p3p is pretty complex!  There are basically two ways to enable an application for p3p.
One is to add another HTTP header, P3P:.  The second is to support a well-known file
location, /w3c/p3p.xml (like robots.txt).

   Browser support is pretty spotty, as is web site adoption.
   Some 3rd party browsers have some support.

So why put P3P into ntop?  It's comming.  P3P is gradually making it's way into the 
top web 
sites -- right now (Dec2002), for example dell.com supports it and yahoo.com doesn't.

Since ntop collects personally identifiable data in it's access log (-a option) and 
it's
various reports and makes those available to pretty much anyone in the default 
configuration,
it's probably not a bad idea to OFFER some support.  Especially if you're running ntop 
at
a site that has started to support P3P, if you don't have a mechanism for your own 
policies
you'll have to adhere to corporate ones.  And that could require massive changes to 
ntop.

Specifically:

      1) ntop will respond to queries for /w3c/p3p.xml and ntop.p3p -- returning the
         ntop.p3p file, IF ONE EXISTS.

         If the file does not exist, a 404 error is generated (vs. pre 4Dec2002 
behavior
         of adding the address to the myGlobals.weDontWantToTalkWithYou list).

      2) New parameters, --p3p-cp and --p3p-uri allow you to return the P3P: header 
with
         either or both of the parameters (cp="" or policyref="") set.

         ntop doesn't validate the text in any way other than the usual 
stringSanityCheck().

There isn't a sample .p3p file provided?  Right.  This is not an oversight.  See 
docs/FAQ...

-----Burton (ref 171)




_______________________________________________
Ntop-dev mailing list
[EMAIL PROTECTED]
http://listgateway.unipi.it/mailman/listinfo/ntop-dev

Reply via email to