- From: Kendall Clark <kendall@monkeyfist.com>
- Date: Tue, 17 Jan 2006 16:59:54 -0500
- To: Thomas Roessler <tlr@w3.org>
- Cc: public-rdf-dawg-comments@w3.org, Rigo Wenning <rigo@w3.org>
On Nov 17, 2005, at 5:36 AM, Thomas Roessler wrote: > What is being logged, and how, strikes me as a typical local policy > decision that should be out of scope for the SPARQL spec (the spec > certainly shouldn't include normative language on this topic); at > the same time, the suggested logging is a poor remedy for the thread > that is being discussed. > > How about the following instead? The latest version (http://www.w3.org/2001/sw/DataAccess/proto-wd/ #policy) of the editor's draft now reads (in relevant part): Since a SPARQL protocol service may make HTTP requests of other origin servers on behalf of its clients, it may be used as a vector of attacks against other sites or services. Thus, SPARQL protocol services may effectively act as proxies for third-party clients. Such services may place restrictions on the resources that they retrieve or on the rate at which external resources can be retrieved. SPARQL protocol services may log client requests in such a way as to facilitate tracing them with regard to third-party origin servers or services. Does this satisfy yr concerns? Cheers, Kendall Clark
Received on Tuesday, 17 January 2006 22:00:03 UTC