[Standards] Stanza Size Limits (was Re: [jdev] Communicate between two client instances of the same ID)

Peter Saint-Andre stpeter at stpeter.im
Thu Sep 4 17:19:32 UTC 2008


Justin Karneges wrote:
> this enforcement is needed not because we need to 
> protect the poor little client, but because if the client and server don't 
> agree on the same value then it becomes super easy to DoS the client.  All a 
> remote user needs to do is send a message that is larger than the client max, 
> but smaller than the server max.  It is critical that the client and server 
> agree on the same maximum value.

Aha, now I see. Yes, this is critical.

/psa

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 6751 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://mail.jabber.org/pipermail/standards/attachments/20080904/59596bdc/attachment.bin>


More information about the Standards mailing list