On Fri, Dec 21, 2007 at 10:34:37AM +0100, Tomasz Sterna wrote: > On Cz, 2007-12-20 at 15:14 -0700, Peter Saint-Andre wrote: > > Which is better? > > > > (1) Allow a denial of service attack. > > (2) Strictly adhere to the letter but not the spirit of the RFC. > > I really don't know... > That's why I'm asking here.
Nothing in the specs should be construed as saying that you MUST NOT use your common sense. In any case I modified the spec to make it explicit that "MUST deliver" is subject to security considerations. Peter -- Peter Saint-Andre https://stpeter.im/
