W3C home > Mailing lists > Public > w3c-dist-auth@w3.org > April to June 1997

RE: WEBDAV Security

From: Yaron Goland <yarong@microsoft.com>
Date: Wed, 30 Apr 1997 13:26:16 -0700
Message-ID: <11352BDEEB92CF119F3F00805F14F4850299DA52@RED-44-MSG.dns.microsoft.com>
To: "'-=jack=-'" <jack@twaxx.twaxx.com>, Larry Masinter <masinter@parc.xerox.com>
Cc: "Henry Sanders (Exchange)" <henrysa@exchange.microsoft.com>, w3c-dist-auth@w3.org
I too am coming to the conclusion that ACLs need to be part of DAV, I
will take it upon myself to put out a proposal by the end of next week.
	Yaron

> -----Original Message-----
> From:	-=jack=- [SMTP:jack@twaxx.twaxx.com]
> Sent:	Friday, April 18, 1997 10:51 AM
> To:	Larry Masinter
> Cc:	Henry Sanders (Exchange); w3c-dist-auth@w3.org
> Subject:	Re: WEBDAV Security
> 
> > I think the WEBDAV group is best qualified to determine the
> > nature of the minimum requirements for access control necessary
> > to build functional but interoperable authoring systems,
> > and that furthermore we'll do ourselves a favor by surveying
> > the minimum requirements of existing authoring systems.
> ------------
> 
> Also the Andrew file system (if I remember correctly) also has
> a good ACL implementation.
> 
> 
> > It may be that all the 'access control' we can ask for is
> > for the WEBDAV server to give the user a web page that allows
> > them to change the default access authorization for a page
> > they just stored, for example.
> --------------------
> That's horribly insufficient, IMHO.  Again look at the ACL's
> from the Andrew FS, that's more like it, I think.  At least
> user and group access rights, similar to read write permissions
> and the ability to specify basic logical op's too.
> 
> 
> -=j=-
> 
> 
> 
Received on Wednesday, 30 April 1997 16:55:55 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Tuesday, 2 June 2009 18:43:42 GMT