Norman Rasmussen wrote:
XMPP validates the sending server via tls and/or dns (dial-back), so it
removes many of the unauthenticated problems of SMTP.
Sure, but the domain is untrusted even if validated. BTW, we don't
validate c2s-connections.
XEP-0158, XEP-0159 and XEP-0161
XEP-0158 is already implemented on some servers. The result - users
don't want to protect their rooms with captcha because there are too
many clients which don't understand captcha forms and run on mobile
device (where you cannot use a fallback HTTP method).
XEP-0159 and XEP-0161 are deferred.
--
Regards,
Evgeniy Khramtsov, ProcessOne.
xmpp:[email protected].
