[interop] day 1 summary
Peter Saint-Andre
stpeter at jabber.org
Thu Aug 3 13:17:07 CDT 2006
Mridul Muralidharan wrote:
> Peter Saint-Andre wrote:
>> Mridul Muralidharan wrote:
>>
>>
>>> This is something I should have brought it up today ... forgot about
>>> it.
>>> Is TLS also a "MUST implement" but not necessary to deploy/expose
>>> feature ?
>>>
>>
>> A specification talks only about what compliant software must include.
>> How people deploy that software cannot be "legislated" in a spec.
>>
>> Peter
>>
>
> Hi,
>
> The main reason for the query was - assuming tls is turned off , how do
> we validate identity (I get it - dialback is weak , but it is better
> than nothing :-) ).
> Having a custom SASL mechanism will not be always possible - so if
> dialback is not a MUST requirement in this usecase , then only option
> would be to terminate the s2s.
> Any other option ?
Yes, you must implement and deploy dialback if you want to do s2s with
most of the current network. All I'm saying is that this is not a "MUST"
(in all caps) as far as the IETF is concerned.
Peter
--
Peter Saint-Andre
Jabber Software Foundation
http://www.jabber.org/people/stpeter.shtml
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 7358 bytes
Desc: S/MIME Cryptographic Signature
Url : http://mail.jabber.org/pipermail/interop/attachments/20060803/15d6197b/smime.bin
More information about the interop
mailing list