On Wed, 2007-10-03 at 16:21 -0400, James Carlson wrote:
> Perhaps we're getting a bit too close to the point of design or code
> review instead of architecture, but other than simply disabling the
> security check, I don't see how the new feature contributes towards
> additional security.
There is architecture here.
When an interface is added for security reasons, it is essential to have
a crisp definition of the threat it addresses in order to allow people
to evaluate whether the interface actually addresses the threat.
I don't see that here.
- Bill
