Sorry about changing topic on threas, ----- Original Message ----- From: Tijl Houtbeckers <[EMAIL PROTECTED]> Sent: Sep 12, 2:11 AM
> Matthias Wimmer <[EMAIL PROTECTED]> wrote on 12-9-2003 1:21:10: > > > >Hi Andrew! > > > >Andrew Sayers schrieb am 2003-09-11 15:31:27: > >> > Note: Protocol change in MSN is due some security issues, AFAIK. > >> For the record, MS claim there is a security weakness in older > >> versions of the protocol, which they haven't disclosed. I assume > >> they'll tell us about it once it's no longer a live issue. > > > >I am not really sure if there is a real security problem in the old > >protocol. But we'll see if they tell us about a real one after it has > >been shut down. > > Well it depends on how you look at it. Microsoft wants people to > upgrade to a version of the protocol that uses SSL, so they when they > choose they can start depending on client-side SSL certificates to know > who their users are. Since you can't do that with the old protocol from > that perspective you could call it "insecure". > > -- > Tijl Houtbeckers > Software Engineer @ Splendo > The Netherlands > > _______________________________________________ > jdev mailing list > [EMAIL PROTECTED] > http://mailman.jabber.org/listinfo/jdev _______________________________________________ jdev mailing list [EMAIL PROTECTED] http://mailman.jabber.org/listinfo/jdev
