W3C home > Mailing lists > Public > public-rdf-dawg-comments@w3.org > January 2006

Re: [OK?] Re: Section 3 of SPARQL protocol partially out of scope.

From: Thomas Roessler <tlr@w3.org>
Date: Wed, 18 Jan 2006 10:12:48 +0100
To: Kendall Clark <kendall@monkeyfist.com>
Cc: public-rdf-dawg-comments@w3.org, Rigo Wenning <rigo@w3.org>
Message-ID: <20060118091248.GB18833@lavazza.does-not-exist.org>

On 2006-01-17 16:59:54 -0500, Kendall Clark wrote:

> The latest version (http://www.w3.org/2001/sw/DataAccess/proto-wd/ 
> #policy) of the editor's draft now reads (in relevant part):
> Since a SPARQL protocol service may make HTTP requests of other  
> origin servers on behalf of its clients, it may be used as a vector  
> of attacks against other sites or services. Thus, SPARQL protocol  
> services may effectively act as proxies for third-party clients. Such  
> services may place restrictions on the resources that they retrieve  
> or on the rate at which external resources can be retrieved. SPARQL  
> protocol services may log client requests in such a way as to  
> facilitate tracing them with regard to third-party origin servers or  
> services.
> Does this satisfy yr concerns?

Yes, this is better.  You could also state the obvious and note
that SPARQL services may place restrictions on the resources
that they can access on behalf of their clients.

(Incidentally, is the protocol able to report this condition
[don't want to access a resource] back to the client?)

Thomas Roessler, W3C   <tlr@w3.org>
Received on Wednesday, 18 January 2006 09:12:59 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 20:52:07 UTC