[Standards] XEP-0178: Clarify SASL-EXTERNAL specification when s2s auth fails

Jonas Schäfer jonas at wielicki.name
Tue Jun 30 15:59:34 UTC 2020


Hi list,

(Editor hat on)

On behalf of the Council, I’d like to bring this pull request to the attention 
of the community:

https://github.com/xsf/xeps/pull/963

Input from server operators specifically would be welcomed to see if this 
change is in fact desirable or if you can see any issues with that. At least 
one member of the community has already expressed [1] that they think this may 
lead to downgrade attacks.

kind regards and thank you,
Jonas

   [1]: https://mail.jabber.org/pipermail/standards/2020-June/037592.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: This is a digitally signed message part.
URL: <http://mail.jabber.org/pipermail/standards/attachments/20200630/ab34699d/attachment.sig>


More information about the Standards mailing list