[Security] client-to-client security :: Summary and todo's

Peter Saint-Andre stpeter at stpeter.im
Sun Aug 31 18:12:21 CDT 2008


Pedro Melo wrote:
> Hi,
> 
> On Aug 23, 2008, at 2:12 PM, Dirk Meyer wrote:
>> Pedro Melo wrote:
>>> Yes, what do we need from the server? In a perfect world I would hope
>>> not to have to go through the server apart from the Jingle
>>> negotiation? Ok, and IBB-Jingle fallback.
>>
>> In that case we need a SOCKS5 proxy or a TURN server. I prefer the
>> TURN server but we lack ice-tcp support to use it.
> 
> If you can negotiate a direct TCP (or TCP-like with order guarantees) 
> via ICE, much better.

We're waiting for the ice-tcp Internet-Draft to be more stable before we 
write a XEP that depends on it.

>> I also need the server to help me find a TURN server I can use if I
>> need one.
> 
> Isn't this a problem to be solved by the Jingle specs?

See XEP-0215 (External Service Discovery):

http://www.xmpp.org/extensions/xep-0215.html

/psa
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 6751 bytes
Desc: S/MIME Cryptographic Signature
Url : http://mail.jabber.org/pipermail/security/attachments/20080831/c8e41992/attachment.bin 


More information about the Security mailing list