On Fri Mar 25 16:32:54 2011, Nicolas Vérité wrote:
On Tue, Jul 20, 2010 at 11:19, Kevin Smith <[email protected]>
wrote:
> Following a discussion in jdev, I've thrown together the skeleton
of a
> XEP for correcting previous messages.
> I'll clean it up before submitting, but the rough gist is at:
> http://www.doomsong.co.uk/extensions/render/xep-correct.html
> Discussion welcome.
Additionally, we can also forbid, or deeply advice to forbid,
message deletion.
If your client actually lets someome else meddle with your recorded
history *at all*, you have far deeper problems than any of this.
If someone wants to send your client a message that says a previous
message of his should be considered deleted, that's fine - your
client can remove it from view, or, more probably, strike it through.
Similarly, your client could display edited messages with change
markings in - strike throughs and new words added in a different font
or colour, with mouse-overs to provide detail.
If you're doing this, then corrections and so on aren't an issue.
(You could even display messages as simple edited, and then be able
to expand the editing activity on them).
In any case, solving this by imposing an artificial restriction won't
help you, as that's merely limiting the scope for an attack rather
than tackling the root cause of the attack.
Dave.
--
Dave Cridland - mailto:[email protected] - xmpp:[email protected]
- acap://acap.dave.cridland.net/byowner/user/dwd/bookmarks/
- http://dave.cridland.net/
Infotrope Polymer - ACAP, IMAP, ESMTP, and Lemonade
