Re: [Standards] ProtoXEP: SRV records for XMPP over TLS

* Travis Burtrum [2015-11-05 20:56]: > That was a deliberate decision on my part, and does not affect > security in the way you mentioned because I explicitly state: > > TLS certificates MUST be validated the same way as for STARTTLS. > (ie, as specified in XMPP Core). So

Re: [Standards] ProtoXEP: SRV records for XMPP over TLS

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 11/06/2015 08:24 AM, Kim Alvefur wrote: > On 2015-11-06 11:28, Georg Lukas wrote: >> * Travis Burtrum [2015-11-05 20:56]: >>> That was a deliberate decision on my part, and does not affect >>> security in the way you

Re: [Standards] ProtoXEP: SRV records for XMPP over TLS

Peter Saint-Andre wrote: > On 11/5/15 5:34 PM, James Cloos wrote: > > > > That might be in the rfc, but most clients seem to look for _sip._tls. > > True. > > However, just because the SIP community embraced this hack doesn't mean we > need to. Cisco's Jabber implementation

Re: [Standards] ProtoXEP: SRV records for XMPP over TLS

-BEGIN PGP SIGNED MESSAGE- Hash: SHA512 On 11/06/2015 05:28 AM, Georg Lukas wrote: > So lets assume I want to connect as ge...@example.com and the SRV > record is > > _xmpp-client._tls.example.com. IN SRV 5 1 443 xmpp.example.com. > > My client then makes a TCP connection to