-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 7/15/09 7:04 PM, Brian Cully wrote: > On 15-Jul-2009, at 19:55, Matthew Wild wrote: >> I think any client which doesn't obey this is inherently insecure >> already and should be fixed now, regardless of whether this proposed >> change goes ahead. For the reasons I stated on the XMPP list I don't >> have any desire for servers to vet stanzas a client receives to its >> full JID (privacy lists aside). > > +1. You get what you deserve when you trust a roster that comes from > anywhere in the universe.
Matthew is right. I stand corrected. Peter - -- Peter Saint-Andre https://stpeter.im/ -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.8 (Darwin) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iEYEARECAAYFAkpeiYEACgkQNL8k5A2w/vyWjgCfUaBbuH/kPjqdupm9+/bHKDA4 JTQAoOkApqmuA8QCIFYocapAnSJSB93K =EIyN -----END PGP SIGNATURE-----
