> APPLY (-0:2:+3) 20/06/2018 Advance XEP-0363: HTTP File Upload > Georg's vote was conditional: "if we add a clear statement about potentially > malicious uploads > running in the context of your web server/domain" > (https://mail.jabber.org/pipermail/standards/2018-July/035208.html)
Additionally, from XMPP Council Minutes 2018-07-18 (https://mail.jabber.org/pipermail/standards/2018-July/035267.html): Kev queries Daniel about list feedback for HTTP Upload; Daniel verifies that Kev is referring to the request for servers to provide information on upload expiration. Daniel prefers not to have that feature in the XEP, unless it would otherwise hinder advancement; and notes that no other XEPs that store data compel servers to communicate their data policy. Dave would like to see the reasons for not doing it on-list. Kev doesn't think it must be included, but there should still be a response on-list. Georg mentions requests for HTTP Server Best Practices to be added to Security Considerations. Kev suggests that Daniel could wrap up the list discussions to allow the XEP to be advanced next meeting.
_______________________________________________ Standards mailing list Info: https://mail.jabber.org/mailman/listinfo/standards Unsubscribe: standards-unsubscr...@xmpp.org _______________________________________________