On Wed, Oct 9, 2019 at 10:20 PM, Evgeny <xramt...@gmail.com> wrote:
I still doubt this is anyhow more secure than session resumption in XEP-0198 (which btw requires real re-authentication).
Let me explain: using BOSH to bypass restriction of XEP-0198 (namely, SASL re-authentication) doesn't justify usage of BOSH, in my opinion. Such explanation looks really weird, to say the least.
_______________________________________________ Standards mailing list Info: https://mail.jabber.org/mailman/listinfo/standards Unsubscribe: standards-unsubscr...@xmpp.org _______________________________________________