[NNTP] draft-ietf-nntpext-authinfo-04
Clive D.W. Feather
clive at demon.net
Mon Oct 4 02:53:36 PDT 2004
Russ Allbery said:
> Removing it entirely would imply that LIST EXTENSIONS should not change
> following a successful AUTHINFO command, yes?
No, it says nothing either way.
> That seems to fine to me; I
> don't have any trouble requiring that even extensions only usable while
> authenticated should be advertised in the unauthenticated state and just
> return the appropriate error code if used unauthenticated.
I disagree violently.
The description of LIST EXTENSIONS talks about the list altering as
internal state changes. For example, if a command
is only available before or after a MODE READER command, the LIST
EXTENSIONS command MUST only include the extension in that situation.
Note that "MUST".
A server might not want to advertise a private capability to clients that
haven't authenticated themselves, and it seems more than reasonable that
they should be allowed not to do so.
--
Clive D.W. Feather | Work: <clive at demon.net> | Tel: +44 20 8495 6138
Internet Expert | Home: <clive at davros.org> | Fax: +44 870 051 9937
Demon Internet | WWW: http://www.davros.org | Mobile: +44 7973 377646
Thus plc | |
More information about the ietf-nntp
mailing list