Peter Saint-Andre wrote:
It seems wrong to compare iq:auth to SASL or to say that iq:auth is less secure. SASL PLAIN over an unencrypted connection is less secure than iq:auth with digest password, whereas SASL EXTERNAL is probably more secure than iq:auth. It all depends on the mechanism used. Therefore I think it would be more accurate to describe the reasons for changing to SASL and remove the misleading text about iq:auth being less secure.
Here is a modified version: http://www.xmpp.org/extensions/tmp/xep-0078-2.4.html http://svn.xmpp.org:18080/browse/XMPP/trunk/extensions/xep-0078.xml The agenda for the next Council meeting getting longer... :) http://www.xmpp.org/council/agendas/2008-01-30.html /psa
smime.p7s
Description: S/MIME Cryptographic Signature
