[JDEV] Securing an XMPP / Jabber Server
Chris Mullins
cmullins at winfessor.com
Fri Dec 12 15:46:05 CST 2003
I'm looking for feedback from SysAdmins regarding what features they
would consider "insecure" if they're enabled in a Jabber Server. This
applies to all operating systems, and all servers.
I'm trying to put together a list like "Plain-Text Auth is enabled", "No
SSL Support", etc.
This applies to corporate as well as public servers, although obviously
there is a slightly different list (items like: In-Band registration is
enabled is good on a public server, but probably bad on an internal
corporate server).
---
Chris Mullins
More information about the JDev
mailing list