Re: [xmpp] Fwd: 6122bis: servers as "registrars"
Jehan Pagès <jehan.marmottard@gmail.com> Tue, 19 July 2011 04:22 UTC
Return-Path: <jehan.marmottard@gmail.com>
X-Original-To: xmpp@ietfa.amsl.com
Delivered-To: xmpp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 7C1B721F871E for <xmpp@ietfa.amsl.com>; Mon, 18 Jul 2011 21:22:53 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -3.299
X-Spam-Level:
X-Spam-Status: No, score=-3.299 tagged_above=-999 required=5 tests=[BAYES_00=-2.599, MIME_8BIT_HEADER=0.3, RCVD_IN_DNSWL_LOW=-1]
Received: from mail.ietf.org ([64.170.98.30]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hWR7+tKieZEs for <xmpp@ietfa.amsl.com>; Mon, 18 Jul 2011 21:22:53 -0700 (PDT)
Received: from mail-ww0-f44.google.com (mail-ww0-f44.google.com [74.125.82.44]) by ietfa.amsl.com (Postfix) with ESMTP id BB33F21F8713 for <xmpp@ietf.org>; Mon, 18 Jul 2011 21:22:52 -0700 (PDT)
Received: by wwe5 with SMTP id 5so2568069wwe.13 for <xmpp@ietf.org>; Mon, 18 Jul 2011 21:22:51 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:content-transfer-encoding; bh=VND4KZSshMx/ohhdM5QuKn3S0mKJITp3gKSYGRCN6eo=; b=HKcXnI6thVcYfPPF52d0DQ4UPvOSagYsqtLkP+pp9ZOAB3tnukaZIsQO8MVZztbxDv 30YDsR7GZijjVti0F5zDWLXJd50t/GIV0g8nhhtY8HD3cmZW3rc6HxASHuOxcYSbWESC wGyODMxuVlNs3P0bjfabV2haU3ytPbN7hdzxs=
MIME-Version: 1.0
Received: by 10.216.229.222 with SMTP id h72mr6155204weq.34.1311049370460; Mon, 18 Jul 2011 21:22:50 -0700 (PDT)
Received: by 10.216.85.148 with HTTP; Mon, 18 Jul 2011 21:22:50 -0700 (PDT)
In-Reply-To: <4E24ACB4.8000104@stpeter.im>
References: <4E20A38C.6040507@stpeter.im> <CAFgjPJ-3yznnMjfJJB09Jf=7Z6v5ZQfiiz0Dm7n_F0QRuTo_zw@mail.gmail.com> <CAFgjPJ9bHac6zhW3=55kyH64HgYLfz_=D=1VgzeFa_YXF=zmHg@mail.gmail.com> <4E24ACB4.8000104@stpeter.im>
Date: Tue, 19 Jul 2011 13:22:50 +0900
Message-ID: <CAFgjPJ9PkV1UrzqSMhXaT1cc7a4RphyDNjyxJTYSjTsf8dBLbg@mail.gmail.com>
From: Jehan Pagès <jehan.marmottard@gmail.com>
To: Peter Saint-Andre <stpeter@stpeter.im>
Content-Type: text/plain; charset="ISO-8859-1"
Content-Transfer-Encoding: quoted-printable
Cc: XMPP <xmpp@ietf.org>
Subject: Re: [xmpp] Fwd: 6122bis: servers as "registrars"
X-BeenThere: xmpp@ietf.org
X-Mailman-Version: 2.1.12
Precedence: list
List-Id: XMPP Working Group <xmpp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/xmpp>, <mailto:xmpp-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/xmpp>
List-Post: <mailto:xmpp@ietf.org>
List-Help: <mailto:xmpp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/xmpp>, <mailto:xmpp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Tue, 19 Jul 2011 04:22:53 -0000
Hi, 2011/7/19 Peter Saint-Andre <stpeter@stpeter.im>: > On 7/17/11 3:56 AM, Jehan Pagès wrote: [...] >> Note that I remember that the XSF roadmap has an item about preparing >> us to work on these kind of security considerations: spam, scam, >> phishing, etc. This kind of discussion could definitely enter as an >> item in such a working group. Are we creating it? > > We already have some on these matters here: > > http://tools.ietf.org/html/draft-blanchet-precis-framework-02#section-10.3 > > http://tools.ietf.org/html/draft-saintandre-xmpp-6122bis-01#section-4.3.2 > > However, I think we probably want to add more detailed guidance for both > service providers and client developers. > Yes I remember these texts. But as you say, I think we should have more detailed guidance, and probably also in separate documents. Like one document could be a guide for public server deployment. And one other could be a guide for client implementers. XMPP is great for identifying JIDs but it does not cover all issues, and especially those i18n matters, though necessary, create many hard-to-counter attacks (as you showed well with your example in the Unicode version thread). One day, if XMPP gets the attention it deserves (and that's the goal), we'll get there too (people trying to scam others, directly or setting bots for this, and so on). So let's prepare better than were other protocols (even though it is a never-ending preparation). Jehan
- [xmpp] 6122bis: servers as "registrars" Peter Saint-Andre
- Re: [xmpp] 6122bis: servers as "registrars" Bernard Aboba
- Re: [xmpp] 6122bis: servers as "registrars" Peter Saint Andre
- [xmpp] Fwd: 6122bis: servers as "registrars" Jehan Pagès
- Re: [xmpp] Fwd: 6122bis: servers as "registrars" Peter Saint-Andre
- Re: [xmpp] Fwd: 6122bis: servers as "registrars" Jehan Pagès
- Re: [xmpp] 6122bis: servers as "registrars" Joe Hildebrand
- Re: [xmpp] 6122bis: servers as "registrars" Peter Saint-Andre