On Mon, Jan 18, 2010 at 12:15 PM, Jon Watte <[email protected]> wrote: >> >> If you are concerned about deliberately mis-behaved clients then >> authentication is the way to go. > > > I don't understand why. Authentication just means that someone is who they > say they are. It doesn't mean that the "someone" is guaranteed to not > mis-behave. Note that when I say "client," I mean any random customer of my > service across the wider internet, not just a small, tightly-coupled set of > trusted hosts.
Authentication + ACL will do this for you. This will ensure the client will fail if it tries to do something it isn't allowed. Rajith > > Sincerely, > > jw > > > -- > Americans might object: there is no way we would sacrifice our living > standards for the benefit of people in the rest of the world. Nevertheless, > whether we get there willingly or not, we shall soon have lower consumption > rates, because our present rates are unsustainable. > > > > On Mon, Jan 18, 2010 at 1:48 AM, Gordon Sim <[email protected]> wrote: > >> On 01/16/2010 05:19 PM, Jon Watte wrote: >> >>> In the case of dynamically adding and removing exchanges, doesn't this >>> mean >>> that there is a race condition between an exchange being removed, and all >>> clients knowing about it? >>> >> >> Yes. If you remove an exchange that clients may be using without any >> coordination with them, they will likely get an exception. >> >> >> If you required all clients to have to acknowledge an exchanged-removed >>> message on some other queue before you could actually remove the exchange, >>> then wouldn't you open yourself up to denial attacks by mis-behaved >>> clients? >>> >> >> If you are concerned about deliberately mis-behaved clients then >> authentication is the way to go. >> >> >> --------------------------------------------------------------------- >> Apache Qpid - AMQP Messaging Implementation >> Project: http://qpid.apache.org >> Use/Interact: mailto:[email protected] >> >> > -- Regards, Rajith Attapattu Red Hat http://rajith.2rlabs.com/ --------------------------------------------------------------------- Apache Qpid - AMQP Messaging Implementation Project: http://qpid.apache.org Use/Interact: mailto:[email protected]
