[jdev] rfc3920 document: use of TLS
Peter Saint-Andre
stpeter at jabber.org
Mon Jul 25 10:56:09 CDT 2005
Jacek Konieczny wrote:
> On Fri, Jul 22, 2005 at 09:58:11AM -0600, Peter Saint-Andre wrote:
>
>>2. The STARTTLS command is malformed (i.e., something other than
>><starttls xmlns='urn:ietf:params:xml:ns:xmpp-tls'/> because the
>>namespace is wrong,
>
>
> If the namespace is wrong, then that is not a StartTLS request and
> server should not treat it this way. It should not even be treated as
> a malformed StartTLS request, as if the namespace is not know, then
> there is no way to say what the element means (element name doesn't
> matter).
Sure, that was a bad example. But it *is* possible for the STARTTLS
command to be malformed -- e.g., the initiating entity sends XML
character data or child elements in the <starttls/> element.
Peter
--
Peter Saint-Andre
Jabber Software Foundation
http://www.jabber.org/people/stpeter.shtml
More information about the JDev
mailing list