Justin Karneges wrote:
That said, on the subject of caching, XMPP servers should be a bit more strict
than most of us probably are with ssh, if only to curb spam. Using dialback
on the first connection might be acceptable.
And now that I think about it, the whole "use dialback for the first
co
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Thursday 11 November 2004 09:44 pm, David Waite wrote:
> On Thu, 11 Nov 2004 19:54:49 -0800, Neil Stevens <[EMAIL PROTECTED]> wrote:
> > Also, remember that different people have different threat models to
> > address. Someone in the old hypothetic
Peter Saint-Andre wrote:
In article
<[EMAIL PROTECTED]>,
"JD Conley" <[EMAIL PROTECTED]> wrote:
Allowing self signed (or otherwise untrusted) certs with STARTTLS +
EXTERNAL is opening yourself up for a serious security breach.
Well, that's another story. But that claim on the URL I provided
On Thursday 11 November 2004 07:54 pm, Neil Stevens wrote:
> -BEGIN PGP SIGNED MESSAGE-
> Hash: SHA1
>
> On Thursday 11 November 2004 05:06 pm, Justin Karneges wrote:
> > While JD's comments sum this up nicely, I just want to reiterate loudly
> > that self-signed certificates alone truly ar
On Thu, 11 Nov 2004 19:54:49 -0800, Neil Stevens <[EMAIL PROTECTED]> wrote:
> Also, remember that different people have different threat models to
> address. Someone in the old hypothetical revolutionary conspiracy can't
> afford to depend on large institutional corporations to sign their
> certif
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
On Thursday 11 November 2004 05:06 pm, Justin Karneges wrote:
> While JD's comments sum this up nicely, I just want to reiterate loudly
> that self-signed certificates alone truly are worthless. I'm not even
> talking about man in the middle attacks e
On Thursday 11 November 2004 04:53 pm, Peter Saint-Andre wrote:
> In article
> <[EMAIL PROTECTED]>,
>
> "JD Conley" <[EMAIL PROTECTED]> wrote:
> > Allowing self signed (or otherwise untrusted) certs with STARTTLS +
> > EXTERNAL is opening yourself up for a serious security breach.
>
> Well, that's
While JD's comments sum this up nicely, I just want to reiterate loudly that
self-signed certificates alone truly are worthless. I'm not even talking
about man in the middle attacks either. As a form of identity, a self-signed
cert is as effective as the "From:" header in good old SMTP, and th
In article
<[EMAIL PROTECTED]>,
"JD Conley" <[EMAIL PROTECTED]> wrote:
> Allowing self signed (or otherwise untrusted) certs with STARTTLS +
> EXTERNAL is opening yourself up for a serious security breach.
Well, that's another story. But that claim on the URL I provided was
that it is techni
Allowing self signed (or otherwise untrusted) certs with STARTTLS +
EXTERNAL is opening yourself up for a serious security breach. Using it
with stream:features over dialback would give you encryption with a self
signed cert and trust through the DNS system. STARTTLS + Dialback
offers some level
http://web.amessage.info/news/article/2981 asserts that one cannot use
self-signed certs with TLS for securing XMPP streams. I don't think
that's true, since we took that into account when writing RFC3920.
Also, I am working with the folks from CAcert.org on building JabberIDs
(for any kind of
In article <[EMAIL PROTECTED]>, [EMAIL PROTECTED] wrote:
> GAIM-Integrated Filesharing
As far as I can see, this message if off-topic for the JDEV list. If
off-topic posts continue to be received from the sender, the list admin
(me) will take appropriate actions, which may include holding all
> ...
> 1. Give Money
> The sooner you give, the sooner the software will exist for you and everyone
> else. We are taking donations via PayPal and 100% of what you give will go
> directly to the programmer. Downhill Battle has a solid track record of
> getting projects out the door, and we are
GAIM-Integrated Filesharing
Jail for filesharers is ridiculous. We need to stop it.
The lawsuits aren't enough. The major record labels are literally trying to
send people to prison for sharing music, and a new bill in Congress right now
would let them. We can't let that happen-- it is a complet
In article <[EMAIL PROTECTED]>,
Alexey Nezhdanov <[EMAIL PROTECTED]> wrote:
> ÷ ÓÏÏÂÝÅÎÉÉ ÏÔ þÅÔ×ÅÒÇ 11 îÏÑÂÒØ 2004 07:56 Mallepally Harinath ÎÁÐÉÓÁÌ(a):
> > Yah, Thanks a lot for the reply.
> > Seems that website is down for maintaince when it comes up I ll check it
> > up. Btw can I use this s
hi
anyone of you is able to port/compile XMPP Client Daemon on a unix or
MacOSX platform?
Me is not an experienced linux user thus i don't know much about
these platforms...
project infos are on
http://xcd.jabberstudio.org/
cvs is on sourceforge.
regards,
Edrin
JID: [EMAIL PROTECTED]
___
16 matches
Mail list logo
