Toly Menn wrote: > Hi everyone, > > In RFC 3290bis4, section 7.3.4 > (http://www.xmpp.org/internet-drafts/draft-saintandre-rfc3920bis-04.html#sasl-process-neg-abort) > the response to <abort/> is <aborted/>, but in section 7.5.1 it is > <failure><aborted/></failure> (I omitted the namespace). I think the > latter is correct.
You are correct, that is an error. Fixed in my working copy. > Also, section 7.3.4 indicates that the receiving end of the > connection SHOULD allow at least 2 and no more then 5 retries from > the abort. Does this make sense for s2s connections? EXTERNAL > mechanism? That rule (which IIRC we borrowed from RFC 4422) may not make sense for all SASL mechanisms or for s2s connections. However, for c2s connections it may make sense for SASL EXTERNAL because end users can have multiple certificates (I know I do). Peter -- Peter Saint-Andre https://stpeter.im/
smime.p7s
Description: S/MIME Cryptographic Signature
