[Security] TLS Certificates Verification

Jonathan Schleifer js-xmpp-security at webkeks.org
Tue Aug 19 15:23:58 CDT 2008


You seem to totally ignore that there is only one implementation of  
OTR: libotr. And this is the reference implementation as the  
documentation, well, I don't think it's good enough to write a new  
implementation from scratch from that.

And here come the problems:
* We will break compatibility with clients that already use the  
current way.
* libotr thinks our stanzas are HTML and act strange.

--
Jonathan
-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 801 bytes
Desc: This is a digitally signed message part
Url : http://mail.jabber.org/pipermail/security/attachments/20080819/6e7cbda0/attachment.pgp 


More information about the Security mailing list