On Tue, 15 Sep 2009, Alan Burlison wrote: > Valerie Bubb Fenwick wrote: > >> I don't expect any malicious behaviour, if that is what you are asking, but >> I would certainly expect facilitators not being familiar with the process, >> seeing they can just 'do it' in Auth and the OGB getting careless about >> checking >> the logs (because it would be pull vs current push). That's a common user >> interface type problem and I don't think is too difficult to imagine >> happenning. > > As I said earlier we could send out email reports at regular intervals, so if > you want push instead of pull we can make that happen.
Hi Alan - That's not the same. It is very easy to ignore such emails with the pretense of "I'll look at that later/tomorrrow/next week/someone else will review that I'm sure". Where the current model requires the OGB to take action in a timely manner, or we'll annoy the community asking for the grants. Valerie -- Valerie Fenwick, http://blogs.sun.com/bubbva/ @bubbva Solaris Security Technologies, Developer, Sun Microsystems, Inc. 17 Network Circle, Menlo Park, CA, 94025.
