Re: [9fans] factotum & invalid entries

9fans - fans of the OS Plan 9 from Bell Labs
 help / color / mirror / Atom feed

From: Lucio De Re <lucio@proxima.alt.za>
To: 9fans@cse.psu.edu
Subject: Re: [9fans] factotum & invalid entries
Date: Mon,  7 Feb 2005 09:26:42 +0200	[thread overview]
Message-ID: <1ae7aeda5561f403475aea19a6f0b493@proxima.alt.za> (raw)
In-Reply-To: <a2e0ad8d5be793f4711d3c7cb99a2bcf@ar.aichi-u.ac.jp>

> I believe factotum does not keep clear password if proto=p9sk1
> Then log entry will be useless even if the log shows the key.
> If authentication failed and attribute value list is right except
> password,
> then we should retry with a new password.
>
That, unless I misunderstand Russ's comment, is already the case:
factotum will re-prompt if an attempted connection fails because of an
authentication error.  It is when a different username is submitted
that problems arise in the old style of operation where entries were
appended to the factotum database.

> Current factotum is inconvenient if the order is matter.

Correct: responding to a factotum request with a new username causes a
new entry to be created, whereas if only the password is different,
the previous entry is replaced.  The earlier entry, now with an
invalid username, will have priority over a subsequent correct entry,
invalidating the entire procedure (again, as things used to be).

> I think my proposal is one of idea to resolve the problem.
> Of course if we failed in authentication, then disabled flag will be put
> automatically at the beginning of the attribute value list, and if we
> succeed
> in next authentication the attribute value list is automatically
> replaced by new
> one without changing the order.
>
The point you raised was that you actually want to retain the error
entry for inspection which in my opinion causes more difficulty than
is justified.  A middle ground is to log the erroneous entry in the
same form as would be displayed by looking at the factotum database
and then discard it altogether.  This ought to satisfy your curiosity
and allow us to append new entries rather than prepend them, at the
same time removing the need for the "disabled" attribute.

Once we start treating sequence as significant (we already do, of
course), I think we tread on very thin ice.  Russ's idea of additional
attributes is a sound one to resolve possible ambiguities, rather than
rely on position in the database with all the associated risks.  For
example, what happens if I delete a key and resubmit it instead of
merely overwriting it (IPSO does that, doesn't it?)?  Are these
intentionally different in outcome?

In my opinion, factotum ought to detect ambiguous requests and have
rules for resolving them.

++L

next prev parent reply	other threads:[~2005-02-07  7:26 UTC|newest]

Thread overview: 25+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2005-02-06  2:45 YAMANASHI Takeshi
2005-02-06 16:12 ` Russ Cox
2005-02-06 20:00   ` Tiit Lankots
2005-02-07  5:25   ` Lucio De Re
2005-02-07  5:42     ` arisawa
2005-02-07  6:03       ` Lucio De Re
2005-02-07  6:47         ` arisawa
2005-02-07  7:26           ` Lucio De Re [this message]
2005-02-07  8:09             ` arisawa
2005-02-07  8:55               ` Lucio De Re
2005-02-07  9:15                 ` arisawa
2005-02-07 10:05                   ` Lucio De Re
2005-02-08  5:12                     ` Russ Cox
2005-02-08 16:36                       ` rog
2005-02-08 16:42                         ` Russ Cox
2005-02-08 16:55                           ` Lucio De Re
2005-02-08 16:51                             ` rog
2005-02-08 16:52                             ` Devon H. O'Dell
2005-02-08 17:08                               ` Lucio De Re
2005-02-08 17:10                                 ` rog
2005-02-13 20:03 ` Russ Cox
  -- strict thread matches above, loose matches on Subject: below --
2005-02-14  2:35 YAMANASHI Takeshi
2005-02-14  3:42 ` Russ Cox
2005-02-04  9:31 [9fans] netpbm C H Forsyth
2005-02-05 18:26 ` [9fans] factotum & invalid entries Tiit Lankots
2005-02-05 20:12   ` Russ Cox

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=1ae7aeda5561f403475aea19a6f0b493@proxima.alt.za \
    --to=lucio@proxima.alt.za \
    --cc=9fans@cse.psu.edu \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for NNTP newsgroup(s).