James M Snell wrote:
Ignoring the overhead that it adds for now, isn't this the kind of
situation digital signatures are designed to handle?
Yes. Norm and I have mentioned this as well. I do not think we can solve
this problem by patching the Atom level, ensuring that the Atom level
can
On Wednesday, May 25, 2005, at 06:14 PM, James M Snell wrote:
Ignoring the overhead that it adds for now, isn't this the kind of
situation digital signatures are designed to handle?
Sure, but how many publishers are going to be using digital signatures
in the near term (and more importantly,
On Thursday, May 26, 2005, at 08:04 AM, A. Pagaltzis wrote:
* Graham [EMAIL PROTECTED] [2005-05-25 23:00]:
How is this a Denial of service attack? Isn't it just
ordinary spoofing/impersonation?
Indeed; Id like to see this reworded to refer to spoofing, as
thats what it is.
I presume the
On Wednesday, May 25, 2005, at 01:06 PM, Antone Roundy wrote:
== Abstract ==
State the atom:entries from the same feed with the same ID are the
same entry, whether simulateously in the feed document or not.
I'm retracting this proposal in preference for PaceAtomIdDos, which I
like better
Antone Roundy wrote:
On Wednesday, May 25, 2005, at 06:14 PM, James M Snell wrote:
Ignoring the overhead that it adds for now, isn't this the kind of
situation digital signatures are designed to handle?
Sure, but how many publishers are going to be using digital signatures
in the near
The level of traffic in recent days have been ferocious, and reading
through it, we observe the WG has consensus on changing the format
draft in a surprisingly small number of areas. Here they are:
1. The restriction that atom:author can appear only once is removed.
2. The draft should
On Wednesday, May 25, 2005, at 12:03 PM, Tim Bray wrote:
The level of traffic in recent days have been ferocious, and reading
through it, we observe the WG has consensus on changing the format
draft in a surprisingly small number of areas. Here they are:
All looks good (or at least
On Wednesday, May 25, 2005, at 12:35 PM, Antone Roundy wrote:
I'm going to write a Pace right now, in case that will make any
difference.
Here it is--now comments on that particular detail can be directed at a
proper Pace:
http://www.intertwingly.net/wiki/pie/PaceDuplicateIdsEntryOrigin
==
On 25 May 2005, at 7:35 pm, Antone Roundy wrote:
If multiple atom:entry elements originating in the same Atom feed
have the same atom:id value, whether they exist simultaneously in
one document or in different instances of the feed document, they
describe the same entry.
I'm going to
On 26/5/05 5:20 AM, Graham [EMAIL PROTECTED] wrote:
(Also, do we have a definition for Atom feed that exists beyond a
single instance of a feed document?)
we should have, but we don't.
similarly for Atom Entry.
e.
On Wednesday, May 25, 2005, at 01:20 PM, Graham wrote:
On 25 May 2005, at 7:35 pm, Antone Roundy wrote:
If multiple atom:entry elements originating in the same Atom feed
have the same atom:id value, whether they exist simultaneously in one
document or in different instances of the feed
--On Wednesday, May 25, 2005 11:03:46 AM -0700 Tim Bray [EMAIL PROTECTED]
wrote:
Have I missed any? Yes, there has been high-volume debate on several
other issues; but have there been any other outcomes where we can
reasonably claim consensus exists?
Changing atom:author to atom:creator?
On 5/25/05, Tim Bray [EMAIL PROTECTED] wrote:
Have I missed any? Yes, there has been high-volume debate on several
other issues; but have there been any other outcomes where we can
reasonably claim consensus exists?
Not in my opinion. Looks good to me.
Robert Sayre
On 25 May 2005, at 9:01 pm, Antone Roundy wrote:
8.5 Denial of Service Attacks
Atom Processors should be aware of the potential for denial of
service attacks where the attacker publishes an atom:entry with the
atom:id value of an entry from another feed, and perhaps with a
falsified
On Wednesday, May 25, 2005, at 02:49 PM, Graham wrote:
On 25 May 2005, at 9:01 pm, Antone Roundy wrote:
8.5 Denial of Service Attacks
Atom Processors should be aware of the potential for denial of
service attacks where the attacker publishes an atom:entry with the
atom:id value of an entry
On 25 May 2005, at 10:05 pm, Antone Roundy wrote:
But is it not potentially a DOS? The Good Guy publishes an entry.
The Bad Guy copies the atom:id of that entry into an entry with
different content, gives it a later atom:updated, and publishes
it. The aggregator stops
Tim Bray wrote:
Have I missed any? Yes, there has been high-volume debate on several
other issues; but have there been any other outcomes where we can
reasonably claim consensus exists? -Tim
Good summary, thank you.
cheers
Bill
Please forgive me for stepping in here, because of the recent list
volume I've only been able to partially pay attention to this
discussion, but I just wanted to make a quick observation..
Ignoring the overhead that it adds for now, isn't this the kind of
situation digital signatures are
On May 25, 2005, at 1:49 PM, Graham wrote:
Atom Processors should be aware of the potential for denial of
service attacks where the attacker publishes an atom:entry with
the atom:id value of an entry from another feed, and perhaps with
a falsified atom:source element duplicating the
19 matches
Mail list logo