Package: jabber Version: 1.4.3-3 Severity: wishlist For admins accustomed to explicitly allowing users to access a server with a certain username, the default configuration which allows anyone to register an account on their Jabber server may be a bit unexpected. I'd suggest it may be worth adding a warning to the README.Debian saying:
"By default anyone may register an account on your Jabber server through the standard XML protocol. This is normal for a Jabber server in contrast to other protocols such as SMTP. The public registration functionality can be disabled in the configuration files." It might even be a good idea to have a debconf prompt with the warning and an option to disable public registration at install time? Andrew Archibald -- System Information: Debian Release: 3.1 Architecture: i386 (i686) Kernel: Linux 2.6.8-3-686 Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Versions of packages jabber depends on: ii jabber-common 0.4 Jabber server and transport (commo ii libc6 2.3.2.ds1-22sarge3 GNU C Library: Shared libraries an ii libexpat1 1.95.8-3 XML parsing C library - runtime li ii libpth2 2.0.1-2 The GNU Portable Threads ii libssl0.9.7 0.9.7e-3sarge1 SSL shared libraries ii procps 1:3.2.1-2 The /proc file system utilities -- no debconf information -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
