Changes between Version 9 and Version 10 of AclSyntax


Ignore:
Timestamp:
Jun 1, 2011, 8:41:13 AM (6 years ago)
Author:
vorner
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • AclSyntax

    v9 v10  
    44 * It should be possible to load and „compile“ them into something that can be just executed/called to get yes/no fast (eg. not reading the configuration each time, ACLs will be called often).
    55 * It should be user friendly, readable and intuitive (bad example could be BIND9's `acl "not-these-ips" { !192.168.0.0/24;!10.0.0.0/16; }`, which accepts nothing at all, as said by one source, or would accept anything out of the 192.168.0.0/24 range, even 10.1.1.1 by other explanations of the rules how they apply).
    6  * It should be expressive, so user's specify what they need even in non-trivial cases.
     6 * It should be expressive, so users specify what they need even in non-trivial cases.
    77 * We need to allow adding ACLs as plugins (either C++, python from file and python snippet directly from configuration string).
    88