Re: [xmpp] IQ Handling vulnerabilities
Dave Cridland <dave@cridland.net> Mon, 10 February 2014 16:44 UTC
Return-Path: <dave@cridland.net>
X-Original-To: xmpp@ietfa.amsl.com
Delivered-To: xmpp@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 86BF31A06E5 for <xmpp@ietfa.amsl.com>; Mon, 10 Feb 2014 08:44:03 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.378
X-Spam-Level:
X-Spam-Status: No, score=-1.378 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FM_FORGED_GMAIL=0.622, HTML_MESSAGE=0.001, SPF_PASS=-0.001] autolearn=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id V6GMIq4wADVO for <xmpp@ietfa.amsl.com>; Mon, 10 Feb 2014 08:44:02 -0800 (PST)
Received: from mail-ob0-x22b.google.com (mail-ob0-x22b.google.com [IPv6:2607:f8b0:4003:c01::22b]) by ietfa.amsl.com (Postfix) with ESMTP id 5AFBE1A06EE for <xmpp@ietf.org>; Mon, 10 Feb 2014 08:44:02 -0800 (PST)
Received: by mail-ob0-f171.google.com with SMTP id wp4so7512553obc.30 for <xmpp@ietf.org>; Mon, 10 Feb 2014 08:44:02 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=cridland.net; s=google; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type; bh=bsksBOqjoKe561+hdIgiZRSaqPv7CYx6NguRCnzIIl4=; b=jEklwkZDLWLCS0wZtMijYwhUfOgio/jcqY+2od1VVelQQe1yUx5sZb7m+mJCLyv6e0 JeIq7U2q6R+5+tRunhMKLUqFq8W6N7EYjCi6MBUKfTzk8OZFuVQxAficG2/em2oFIIyo k6/vEM4H+O+z9hM+bUiDyzMAgQ5n+1J9i9uR4=
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:mime-version:in-reply-to:references:date :message-id:subject:from:to:cc:content-type; bh=bsksBOqjoKe561+hdIgiZRSaqPv7CYx6NguRCnzIIl4=; b=QJjq+ko4Zhv29ZpItVjEImCdjIvorEsuSnB2vHLu5Jyd1n8fCiZoCtTIie0bhNTxDu ZeuT2CXRJIfg+kL+nWFxy21mU+X4rcmcFck8DUL9PlL+mNcj2+XRUIOjtSQXVLDEw4ae UrwvzqCg6HbwRY1LBoo+IbUZBKufPPFVOnK5o2L6w+g/a9XWOi2AXYfD/9h0CIbEfiXz D2TAtbeesFbIvTddcOSPiotGpmb+shBqyK9pj9TtialcaVnhzz6imFRhpzvKChz8MaD1 21J0hGgBCUJHINYz+upIj9lN+wPTzMsOeS11vslWwrodLm14CrdOpEDnZnTymHX5UzrQ W7Zg==
X-Gm-Message-State: ALoCoQkReYvKKaa6dpUE08XY5kMung1pGY9jpz4BKgwPNdMLkEfKse1bf11Zs+rkLoFnwPVI9VJW
MIME-Version: 1.0
X-Received: by 10.60.103.178 with SMTP id fx18mr1195626oeb.69.1392050642059; Mon, 10 Feb 2014 08:44:02 -0800 (PST)
Received: by 10.60.55.138 with HTTP; Mon, 10 Feb 2014 08:44:01 -0800 (PST)
In-Reply-To: <52F900FD.5030805@stpeter.im>
References: <CAOb_FnxS-dMT85N7LHj5M9JWk3pL85=ugrDqaT7j5d28HBr0Cw@mail.gmail.com> <CF194491.38AD3%jhildebr@cisco.com> <2F5E925F-021D-408E-91D9-3CC5BEB6BEC6@nostrum.com> <48F4D361-4403-47E6-862D-FBDDDEBCC642@xnyhps.nl> <CF1A369C.38BE2%jhildebr@cisco.com> <CAKHUCzyCwKbmnUoXLHW=XzYbiFrcg-dQsDojGUnA-_r3qK+_Vg@mail.gmail.com> <12420410-2615-4A32-8998-AFF19D4EF7BC@xnyhps.nl> <CAKHUCzw6r4vZOHmLm62YgQAj72EjiXbqc8ZShC4=pJ5gxff31w@mail.gmail.com> <CAOb_FnybyUd69ayMPiLZd1i1n4=cnPA6NB-d3BqguSRH3cJLtA@mail.gmail.com> <A5EDDD45-EADA-43D8-B1C8-80C72F1C4AAC@xnyhps.nl> <52F900FD.5030805@stpeter.im>
Date: Mon, 10 Feb 2014 16:44:01 +0000
Message-ID: <CAKHUCzw=Dh5yoAA9pCH5r3JSkaAng_A8AqTwqkReDvq7Td4VHA@mail.gmail.com>
From: Dave Cridland <dave@cridland.net>
To: Peter Saint-Andre <stpeter@stpeter.im>
Content-Type: multipart/alternative; boundary="089e0118409607969704f2100c57"
Cc: Ben Campbell <ben@nostrum.com>, XMPP Working Group <xmpp@ietf.org>
Subject: Re: [xmpp] IQ Handling vulnerabilities
X-BeenThere: xmpp@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: XMPP Working Group <xmpp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/xmpp>, <mailto:xmpp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/xmpp/>
List-Post: <mailto:xmpp@ietf.org>
List-Help: <mailto:xmpp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/xmpp>, <mailto:xmpp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 10 Feb 2014 16:44:03 -0000
On Mon, Feb 10, 2014 at 4:40 PM, Peter Saint-Andre <stpeter@stpeter.im>wrote: > The document looks good to me. I'll review it in more detail after I > submit the ~10 I-Ds I need to update this week. :-) > > That's just showing off. ;-)
- Re: [xmpp] IQ Handling vulnerabilities Philipp Hancke
- [xmpp] IQ Handling vulnerabilities Kevin Smith
- Re: [xmpp] IQ Handling vulnerabilities Joe Hildebrand (jhildebr)
- Re: [xmpp] IQ Handling vulnerabilities Matt Miller
- Re: [xmpp] IQ Handling vulnerabilities Peter Saint-Andre
- Re: [xmpp] IQ Handling vulnerabilities Ben Campbell
- Re: [xmpp] IQ Handling vulnerabilities Thijs Alkemade
- Re: [xmpp] IQ Handling vulnerabilities Alexander Holler
- Re: [xmpp] IQ Handling vulnerabilities Kevin Smith
- Re: [xmpp] IQ Handling vulnerabilities Kevin Smith
- Re: [xmpp] IQ Handling vulnerabilities Joe Hildebrand (jhildebr)
- Re: [xmpp] IQ Handling vulnerabilities Dave Cridland
- Re: [xmpp] IQ Handling vulnerabilities Kevin Smith
- Re: [xmpp] IQ Handling vulnerabilities Joe Hildebrand (jhildebr)
- Re: [xmpp] IQ Handling vulnerabilities Waqas Hussain
- Re: [xmpp] IQ Handling vulnerabilities Alexander Holler
- Re: [xmpp] IQ Handling vulnerabilities Alexander Holler
- Re: [xmpp] IQ Handling vulnerabilities Ben Campbell
- Re: [xmpp] IQ Handling vulnerabilities Thijs Alkemade
- Re: [xmpp] IQ Handling vulnerabilities Waqas Hussain
- Re: [xmpp] IQ Handling vulnerabilities Kevin Smith
- Re: [xmpp] IQ Handling vulnerabilities Dave Cridland
- Re: [xmpp] IQ Handling vulnerabilities Kevin Smith
- Re: [xmpp] IQ Handling vulnerabilities Thijs Alkemade
- Re: [xmpp] IQ Handling vulnerabilities Thijs Alkemade
- Re: [xmpp] IQ Handling vulnerabilities Ashley Ward
- Re: [xmpp] IQ Handling vulnerabilities Peter Saint-Andre
- Re: [xmpp] IQ Handling vulnerabilities Peter Saint-Andre
- Re: [xmpp] IQ Handling vulnerabilities Dave Cridland
- Re: [xmpp] IQ Handling vulnerabilities Ashley Ward
- Re: [xmpp] IQ Handling vulnerabilities Peter Saint-Andre
- Re: [xmpp] IQ Handling vulnerabilities Joe Hildebrand (jhildebr)
- Re: [xmpp] IQ Handling vulnerabilities Thijs Alkemade
- Re: [xmpp] IQ Handling vulnerabilities Joe Hildebrand (jhildebr)
- Re: [xmpp] IQ Handling vulnerabilities Dave Cridland
- Re: [xmpp] IQ Handling vulnerabilities Dave Cridland
- Re: [xmpp] IQ Handling vulnerabilities Alexander Holler
- Re: [xmpp] IQ Handling vulnerabilities Dave Cridland
- Re: [xmpp] IQ Handling vulnerabilities Alexander Holler
- Re: [xmpp] IQ Handling vulnerabilities Thijs Alkemade
- Re: [xmpp] IQ Handling vulnerabilities Alexander Holler
- Re: [xmpp] IQ Handling vulnerabilities Alexander Holler
- Re: [xmpp] IQ Handling vulnerabilities Dave Cridland
- Re: [xmpp] IQ Handling vulnerabilities Alexander Holler
- Re: [xmpp] IQ Handling vulnerabilities Alexander Holler
- Re: [xmpp] IQ Handling vulnerabilities Alexander Holler
- Re: [xmpp] IQ Handling vulnerabilities Joe Hildebrand (jhildebr)