Pluggable auth modules
Thiago Macieira
thiago at kde.org
Wed Jun 1 13:47:47 PDT 2011
On Wednesday, 1 de June de 2011 13:02:54 Pavel Strashkin wrote:
> 2011/6/1 Thiago Macieira <thiago at kde.org>:
> > I think that libdbus-1 should only concern itself with the marshalling
> > and demarshalling, with maybe a file-descriptor based implementation.
> > Any fancier kind of transport, including SSL-based ones, should be
> > implemented by an upper layer. For that reason, authentication should
> > also be provided by the upper layer.
>
> That's a good point, but the actual situation is a different and it
> dictates the rules: authentication is a part of libdbus (and dbus
> specification)
Technically correct.
> and i'm not sure that in the near future somebody just cut it off
> because it can break everything, so if we can't remove it - we can
> (should) improve it a bit.
I disagree. If the design is flawed, we shouldn't put more energy into it. We
should find the proper, new design to replace it.
> Why not (think in a background that dbus already has an auth
> and we have to live with it, but it's a less flexible that it could
> be)?
Because it's flawed. It shouldn't be there.
--
Thiago Macieira - thiago (AT) macieira.info - thiago (AT) kde.org
Senior Product Manager - Nokia, Qt Development Frameworks
PGP/GPG: 0x6EF45358; fingerprint:
E067 918B B660 DBD1 105C 966C 33F5 F005 6EF4 5358
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 190 bytes
Desc: This is a digitally signed message part.
URL: <http://lists.freedesktop.org/archives/dbus/attachments/20110601/a73d13fa/attachment.pgp>
More information about the dbus
mailing list