On Fri, Nov 05, 2004 at 08:10:05AM -0500, Barry Margolin wrote: > > What if the ACL contained 1.2.3.0/24? That's a wildcard that matches > all 1.2.3.x addresses. The server can easily match incoming addresses > against that, but it's not as sensible to send notifications to all > those addresses. So because the user can make a mistake you don't allow it? It would make sense to have an ACL with a network, but it also makes sense to have one with just a set of IPs. It makes sense to use the former for an allow-query line, and it makes sense to use the later for an also-notify line. -- Phil Dibowitz Systems Architect and Administrator Enterprise Infrastructure / ISD / USC UCC 174 - 213-821-5427 -- Attached file included as plaintext by Ecartis -- -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQFBi89t7lkZ1Iyv898RAtIAAJsG2BgtgaVqJXGAP2mbolxjFr5TKQCfTdPT /b5YFZ+tFWQKD0o5aVapG/w= =j1dW -----END PGP SIGNATURE-----