W3C home > Mailing lists > Public > public-rdf-dawg-comments@w3.org > January 2006

[OK?] Re: Section 3 of SPARQL protocol partially out of scope.

From: Kendall Clark <kendall@monkeyfist.com>
Date: Tue, 17 Jan 2006 16:59:54 -0500
Message-Id: <DCAF1F66-02C1-4CF4-A6C6-325C0334BB17@monkeyfist.com>
Cc: public-rdf-dawg-comments@w3.org, Rigo Wenning <rigo@w3.org>
To: Thomas Roessler <tlr@w3.org>


On Nov 17, 2005, at 5:36 AM, Thomas Roessler wrote:

> What is being logged, and how, strikes me as a typical local policy
> decision that should be out of scope for the SPARQL spec (the spec
> certainly shouldn't include normative language on this topic); at
> the same time, the suggested logging is a poor remedy for the thread
> that is being discussed.
>
> How about the following instead?

The latest version (http://www.w3.org/2001/sw/DataAccess/proto-wd/ 
#policy) of the editor's draft now reads (in relevant part):

Since a SPARQL protocol service may make HTTP requests of other  
origin servers on behalf of its clients, it may be used as a vector  
of attacks against other sites or services. Thus, SPARQL protocol  
services may effectively act as proxies for third-party clients. Such  
services may place restrictions on the resources that they retrieve  
or on the rate at which external resources can be retrieved. SPARQL  
protocol services may log client requests in such a way as to  
facilitate tracing them with regard to third-party origin servers or  
services.

Does this satisfy yr concerns?

Cheers,
Kendall Clark
Received on Tuesday, 17 January 2006 22:00:03 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 8 January 2008 14:14:50 GMT