Posted by Stephen Auerbach on March 23, 2005 at 10:49:08:
I did a Google search of this site looking for references to the word "security." What I found was amazing though not at all surprising:
1)First there is the Blind Password thing. This so called security system was created by the people of the Q machine and likely originated when they discovered the directory. It’s not a security scheme; it’s a directory access scheme. I have seen folks try to use it as a security system but it fails miserably. It does not identify a user, there is no way to allow read-only access, and the concept of field level restriction does not exist.
2)Then thre is the CometSecurityServer. What kind of security does it provide? None. It does make Signature Systems feel more secure but to the end user it is nothing but a pain in the …. And it offers no security to the user. None at all.
3)And finally we have the IDMAINT/IDFILE thing that Signature now threatens to integrate with the PDF printer. This is a security system that requires no password, no sign-on and no way to maintain.
We don’t have a security system in Comet. We have a directory access scheme, a software registration system and a workstation-level access firewall.
We need a security system.