[Security] TLS Certificates Verification

Jonathan Schleifer js-xmpp-security at webkeks.org
Wed Aug 20 09:18:05 CDT 2008


Am 19.08.2008 um 23:38 schrieb Jonathan Dickinson:

> One far-out and crazy problem that we probably need to keep in mind  
> is that this stuff needs to be configurable, and the current XEPs  
> don't really cut it.

What do you think is not configurable enough about ESessions? You can  
configure nearly everything, which algorithms to use, whether logging  
should be used etc. Please be more precise here, as I doubt TLS is  
more configurable!

--
Jonathan

-------------- next part --------------
A non-text attachment was scrubbed...
Name: PGP.sig
Type: application/pgp-signature
Size: 801 bytes
Desc: This is a digitally signed message part
Url : http://mail.jabber.org/pipermail/security/attachments/20080820/6682e5d3/attachment.pgp 


More information about the Security mailing list