[Opensim-dev] Trust & distributed grids

Impalah Shenzhou impalah at gmail.com
Tue Nov 24 14:59:30 UTC 2009 

Ok, maybe it's a misunderstood. I will try to explain what I wanted to know:

Imagine 100000 region servers pretending to be a grid.

What I understood from Morgaine comment:

            Opensim needs decentralized / distributed mechanisms for *
identity,

* was

"I have entered that grid, my authentication was managed by one region
server. When I try to jump to another region in the same grid I have to
authenticate again in the region server and that region server must contain
my data to authenticate me again".

Nowadays is like: Enter in a grid, being authenticated by a common user
server, when I want to jump to another region in the grid, I don't need to
authenticate me again.

What I understand with "descentralized" is: each opensim servers has the
mechanisms to authenticate an user even when it is part of a grid.

And that is what I don't understand: why? why not to surrogate the
authentications to specialized and centralized servers.

And that was the reason for my question about OpenID, maybe this is a system
considered "decentralized".


Anyway I can't see anything bad on centralized servers. If anyone wants to
enter in my server he/she have to follow my rules; if I have 1000 servers, I
provide you with a common auth mechanism for accessing all of them.

Or maybe I am completelly wrong.


Greetings





2009/11/24 Robert A. Knop Jr. <rknop at pobox.com>

> I don't know that this really *is* offtopic, unless it's already a
> settled issue amongs the OpenSim devs.
>
> On Tue, Nov 24, 2009 at 02:19:20PM +0100, Impalah Shenzhou wrote:
> > I could trust in you, but you need to tell me "you are really you" with a
> > local login (i.e. email headers can be altered to impersonate as another
> > person) or someone I trust should tell it to me (i.e. OpenID).
>
> Do you have any personal web pages anywhere?  Do you run any CGI or any
> PHP there?  Do you identify everybody who comes there?  That's the
> analogy we should think about.  Yes, we need a secure infrastructure so
> that only the small number of people you *really* trust can do scary
> things.  But at the level of running regions -- well, you may be using a
> hosting provider, or you may be hosting yourself, but you don't need
> full and complete trust that everybody is who they claim to be just to
> connect to the world.
>
> --
> --Rob Knop
>  E-mail:    rknop at pobox.com
>  Home Page: http://www.pobox.com/~rknop/ <http://www.pobox.com/%7Erknop/>
>  Blog:      http://www.sonic.net/~rknop/blog/<http://www.sonic.net/%7Erknop/blog/>
>
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.9 (GNU/Linux)
>
> iD8DBQFLC+pcfEn1oMJSrdsRApVqAKCGz8o5gt7vEqvl3HJK07jftpLi5wCg56g+
> oq1mcfGvljoH5K0Y6X/WX9M=
> =bh/M
> -----END PGP SIGNATURE-----
>
> _______________________________________________
> Opensim-dev mailing list
> Opensim-dev at lists.berlios.de
> https://lists.berlios.de/mailman/listinfo/opensim-dev
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://opensimulator.org/pipermail/opensim-dev/attachments/20091124/0977b6c6/attachment-0001.html>

More information about the Opensim-dev mailing list