[Standards] XMPP client-centric? [was: Decloaking and Temporary Subscriptions]

Joe Hildebrand joe.hildebrand at webex.com
Thu Jan 21 15:53:28 UTC 2010

On 1/21/10 4:06 AM, "Jason" <jason at hardlight.com.au> wrote:

> if xmpp supported some extra (pluggable, extensible) auth scheme
> then this could be mitigated.

You want something more pluggable and extensible than SASL?

> I dont know how to send stanzas from a component as an arbitrary user
> from an account of another domain. please tell me how! this is exactly
> what I need. (in my experience the stanza is sent but the recipient
> server rejects it, as it should).

The messages are rejected because they are spam.  Why do you want to
impersonate people in another security domain?  I can't think of a reason
that's not evil.

Joe Hildebrand

More information about the Standards mailing list