------- Original message -------
From: Evgeniy Khramtsov <xramt...@gmail.com>
Sent: 15/11/'09, 5:27
Norman Rasmussen wrote:
XMPP validates the sending server via tls and/or dns (dial-back), so it
removes many of the unauthenticated problems of SMTP.
Sure, but the domain is untrusted even if validated. BTW, we don't
validate c2s-connections.
Right, we authenticate, whereas SMTP cannot, but we don't authorize
specially for a domain. We also authenticate c2s, and we (should) have lots
of authorization there.
Dave.
