On 3/12/09 4:45 PM, Jack Moffitt wrote: > So RFC 2831 says: > > digest-uri-value = serv-type "/" host [ "/" serv-name ]
DIGEST-MD5 is being deprecated by the IETF: http://tools.ietf.org/html/draft-ietf-sasl-digest-to-historic > and RFC 3920 does not seem to specify anything else. > > Implementations seem to expect xmpp/DOMAIN whre DOMAIN is the domain > part of the JID. > > One reading of 2831 might lead one to implement something like: > xmpp/talk.google.com/gmail.com I think that everyone does "xmpp/domain.tld", but what you mention is possible, for example this is supported in ejabberd: https://support.process-one.net/browse/EJAB-569 > This is actually bad news, because BOSH clients will not be able to > get this extra SRV information, unless the connection manager returns > it somehow. > > Should we add some language to 3920bis to lock this down so that we > don't have implementations that are incapable of BOSH? We're hoping that rfc3920bis will recommend the use of SCRAM: http://tools.ietf.org/html/draft-newman-auth-scram Peter -- Peter Saint-Andre https://stpeter.im/
smime.p7s
Description: S/MIME Cryptographic Signature
