Am 12.07.2013 23:01, schrieb Peter Saint-Andre:
But the real problems seem to be in deployments, not implementations.
Well, it's an awareness problem. Currently, nothing breaks when an s2s
certificate expires. That means those are continued to use for years.
Nobody notices. Heh, it still works with jabber.org.
We don't even need POSH to solve these problems.
Likewise, few people notice when certain deployments suddenly stop
offering TLS. Or are surprised some big parties aren't using TLS at all.
_______________________________________________
JDev mailing list
Info: http://mail.jabber.org/mailman/listinfo/jdev
Unsubscribe: jdev-unsubscr...@jabber.org
_______________________________________________
