[Pidgin] #6516: Change what Jabber checks for in the X.509 common name
Pidgin
trac at pidgin.im
Sat Aug 16 02:25:43 EDT 2008
#6516: Change what Jabber checks for in the X.509 common name
----------------------+-----------------------------------------------------
Reporter: wehlhard | Owner: deryni
Type: patch | Status: new
Milestone: 2.5.0 | Component: XMPP
Version: 2.4.3 | Resolution:
Keywords: |
----------------------+-----------------------------------------------------
Comment(by LouCipher):
The ability in Pidgin for the user to specify a connect server different
than the JID domain seems to be outside the scope of the RFC. Therefore,
I believe that either:
* the user specified connect server specified should not be used, or
[[BR]]
* the user specified connect server specified could be used as a fallback,
in case the domain does not match
The existing behavior is to use the user specified connect server or the
SRV record in preference over the JID domain. Both seem to contradict the
RFC (and the SRV record checking is insecure, as mention above).
--
Ticket URL: <http://developer.pidgin.im/ticket/6516#comment:3>
Pidgin <http://pidgin.im>
Pidgin
More information about the Tracker
mailing list