[Security] upcoming DEFCON talk

Peter Saint-Andre stpeter at stpeter.im
Wed Jun 24 20:40:49 CDT 2009


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 6/24/09 4:32 PM, David Banes wrote:
> On 25/06/2009, at 1:07 AM, Peter Saint-Andre wrote:
> 
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: SHA1
>>
>> On 6/24/09 2:01 AM, Jonathan Dickinson wrote:
>>>> -----Original Message-----
>>>> From: security-bounces at xmpp.org [mailto:security-bounces at xmpp.org] On
>>>> Behalf Of Peter Saint-Andre
>>>> Sent: 24 June 2009 12:24 AM
>>>> To: XMPP Security
>>>> Subject: [Security] upcoming DEFCON talk
>>>>
>>>> I take a look at how those issues
>>>> play out in IM clients and open source servers.
>>>
>>> Do we have any recommendations on how to avoid things like this?
>>
>> Like what? The abstract of the talk doesn't provide many details.
>> Perhaps a conference paper will emerge at some point. In any case we
>> have plenty of recommendations regarding DoS, see XEP-0205:
>>
>> http://xmpp.org/extensions/xep-0205.html
>>
> 
> Somehow we need to get this to Ava, so she knows about it before the
> conference.

I assume that anyone who cares about XMPP security is on this list. :)

Peter

- --
Peter Saint-Andre
https://stpeter.im/

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.8 (Darwin)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iEYEARECAAYFAkpC1aEACgkQNL8k5A2w/vzKUgCgg8m+c3rvnaS6+R8V3H56SfF2
E+QAoPuBG0x8bmQaHpuKNwTI32Nu8cIj
=rNkV
-----END PGP SIGNATURE-----


More information about the Security mailing list