[Social] [Fwd: [Standards] Proposed XMPP Extension: Auto-Discovery of JabberIDs]
Peter Saint-Andre
stpeter at stpeter.im
Tue Apr 29 16:39:09 CDT 2008
David Banes wrote:
> Just a note that maybe;
>
> 5. Security Considerations
>
> should mention privacy and identity theft, this would be one more piece
> of personal information available on the net for bots to grab when
> scanning social networking sites.
That wouldn't help a spammer if the URL points to a pubsub node. But I
suppose it might be a problem for MUC rooms and user accounts.
> Maybe there should be a recommendation to encode the address?
Like the MD5 hashes that FOAF uses for email addresses?
Personally I think it's the responsibility of those who run the XMPP
network to protect against abusive traffic natively, because people's
JIDs will leak out no matter what we do.
Peter
--
Peter Saint-Andre
https://stpeter.im/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 7338 bytes
Desc: S/MIME Cryptographic Signature
Url : http://mail.jabber.org/pipermail/social/attachments/20080429/b27e90fe/attachment.bin
More information about the social
mailing list