> -----Original Message----- > From: [email protected] [mailto:[email protected]] On > Behalf Of Winfried Tilanus > Sent: 27 September 2009 02:35 PM > To: XMPP Security > Subject: Re: [Security] Jabber is an evil security risk... > > On 09/27/2009 02:32 AM, David Banes wrote: > > Hi, > [...] > > Proactive working on things like XEP-0165 can indeed help with > controlling the possible damage of illegal use of XMPP. It might lessen > the damage when the day comes that the public jabber network is a big > time target for things like identity theft. It might also help by > showing that insecurity is not a feature of the protocol but that the > insecurity is a result the way the protocol is applied.
Indeed, proper implementation of XEP-0076 <http://xmpp.org/extensions/xep-0076.html> may help mitigate these problems. > > best wishes, > > Winfried
