Security. This firewalled gmcd will only push notifications to the clients that connected to it. All requests have to go through HTTP interface built on ohttpd and bundles, and routed to the firewalled gmcd.
在 2013-2-27,下午11:07,David Chisnall <[email protected]> 写道: > What problem are you trying to solve here? > > David > > On 27 Feb 2013, at 15:04, Maxthon Chan <[email protected]> wrote: > >> How about this: implement it in this fashion: >> >> Modules involved: gmcd (finished), ohttpd (finished at here: >> http://github.com/xcvista/ohttpd), IMMessageRoutingBundle and messaged. >> >> When a user is sending a message, it will connect to the server using HTTP >> over SSL and ohttpd will accept the connection. It will POST the request in >> plist format to IMMessageRoutingBundle (an ohttpd bundle running in the HTTP >> server), which then will send a distributed notification to gmcd (which is >> fire walled so that only notifications from localhost, i.e. >> IMMessageRoutingModule will be allowed to be transmitted). >> >> 在 2013-2-27,下午10:52,Bluna Ratimonkey <[email protected]> 写道: >> >>> >>> >>> >>> On Wed, Feb 27, 2013 at 9:07 PM, Maxthon Chan <[email protected]> wrote: >>> 1) If the user is connecting to the DO/DN-based iMessage-clone server over >>> SSL, I think that we can assume that the user thinks that the data from >>> that particular server is trustable. Let alone on an iMessage clone, the >>> resulting data will be a plain NSString (or if you fancy, an >>> NSAttributedString) to be displayed. >>> >>> That's a really bad practice. You should never trust anything outside your >>> box. It's even the worst with your case, because the server is even opening >>> DO port for any client. >>> >>> >>> >>> 2) And if we have the iMessage clone, I think the chat issue will be solved. >>> >>> 在 2013-2-27,下午10:01,David Chisnall <[email protected]> 写道: >>> >>>> On 27 Feb 2013, at 13:53, Maxthon Chan <[email protected]> wrote: >>>> >>>>> Well then can we envelope DO in something that is secure enough, like SSL >>>>> or SSH tunnel? >>>> >>>> That would have no effect. The problem is taking DO messages from an >>>> untrusted source, running them through a parser that was written for speed >>>> (not security) and then firing the resulting messages. >>>> >>>>> As what I know, Apple's Push Notifications are DO over SSL and iMessage >>>>> works on that. >>>> >>>> No they aren't. They are nothing like DO, they are similar to Distributed >>>> Notifications, which are not the same thing at all, and are only vaguely >>>> similar to that. >>>> >>>>> If there is any way to do that using GNUstep and Étoilé, we can just make >>>>> an iMessage clone and enhance it with stuff like groups and friend >>>>> permissions. >>>> >>>> There is an example in my first Cocoa book using distributed notifications >>>> to implement a simple chat client, but I wouldn't recommend it for >>>> anything that has untrusted users (i.e. anything on the Internet). >>>> >>>>> Can GNUstep's NSSocketPort make use of SSL? >>>> >>>> Yes. >>>> >>>> David >>>> >>>> -- >>>> This email complies with ISO 3103 >>>> >>>> >>>> _______________________________________________ >>>> Etoile-discuss mailing list >>>> [email protected] >>>> https://mail.gna.org/listinfo/etoile-discuss >>> >>> >>> _______________________________________________ >>> Etoile-discuss mailing list >>> [email protected] >>> https://mail.gna.org/listinfo/etoile-discuss >>> >>> >>> >>> -- >>> I used to be a GNUstep developer like them, then I took an arrow in the >>> knee... >>> _______________________________________________ >>> Etoile-discuss mailing list >>> [email protected] >>> https://mail.gna.org/listinfo/etoile-discuss >> >> _______________________________________________ >> Etoile-discuss mailing list >> [email protected] >> https://mail.gna.org/listinfo/etoile-discuss > > > > > -- Sent from my Cray X1 > > > _______________________________________________ > Etoile-discuss mailing list > [email protected] > https://mail.gna.org/listinfo/etoile-discuss _______________________________________________ Etoile-discuss mailing list [email protected] https://mail.gna.org/listinfo/etoile-discuss
