[Security] TLS Certificates Verification

Jonathan Dickinson jonathanD at k2.com
Wed Aug 20 06:48:04 CDT 2008


> -----Original Message-----
> From: security-bounces at xmpp.org [mailto:security-bounces at xmpp.org] On
> Behalf Of Jonathan Dickinson
> Sent: Wednesday, August 20, 2008 1:26 PM
> To: XMPP Security
> Subject: Re: [Security] TLS Certificates Verification
> ...
>
> Somehow the user would have different certificates for different
> resources. This would allow me to assert that jack sent the message and
> he is at home.
> ...

Figured it out. You can just sign your resource as send it to the other guy.

> ...


More information about the Security mailing list