On Jan 24, 2013, at 12:04 PM, Peter Saint-Andre <[email protected]> wrote:
> -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On 1/24/13 9:20 AM, Tobias Markmann wrote: >> >> On Thu, Jan 24, 2013 at 5:01 PM, Matt Miller >> <[email protected] <mailto:[email protected]>> >> wrote: >> >> Sure, but there are potential privacy concerns here. Sending UTC >> always does not give away my (extremely broad) geographical >> location, while including the timezone offset does. >> >> I am not suggesting we force this 'stamp' to always be UTC. >> Personally, I think I might like the timezone offset to be >> included (my last is 3 hours ago because it's the middle of the >> night for me compared to you"). What I am suggesting is adding a >> note somewhere about the concern. >> >> >> Wouldn't it make more sense to add this security notice to >> XEP-0082, since it applies to everywhere you use timestamps that >> include a timezone? > > Yes, that sounds like the right place. Works for me. - m&m Matthew A. Miller < http://goo.gl/LK55L >
smime.p7s
Description: S/MIME cryptographic signature
