From 3acc0fdc84b51a219786047b561a307938607723 Mon Sep 17 00:00:00 2001
From: Unknown User <unknown@localhost>
Date: Tue, 8 Sep 2009 20:21:30 +0000
Subject: [PATCH] clarified potential DoS attack

git-svn-id: file:///home/ksmith/gitmigration/svn/xmpp/trunk@3390 4b5297f7-1745-476d-ba37-a9c6900126ab
---
 xep-0170.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/xep-0170.xml b/xep-0170.xml
index 927b1a9c..63fcc0c2 100644
--- a/xep-0170.xml
+++ b/xep-0170.xml
@@ -81,7 +81,7 @@
     <p>That order MUST be followed if no other stream features are negotiated.</p>
   </section2>
   <section2 topic='Stream Compression' anchor='c2s-compress'>
-    <p>&xep0138; is negotiated when it is not possible to set up TLS compression for whatever reason. It seems safest to negotiate stream compression after negotiation of both TLS (to safely complete the negotiation) and SASL (to prevent certain denial-of-service attacks). Therefore the following order is RECOMMENDED:</p>
+    <p>&xep0138; is negotiated when it is not possible to set up TLS compression for whatever reason. It seems safest to negotiate stream compression after negotiation of both TLS (to safely complete the negotiation) and SASL (to prevent certain denial-of-service attacks caused by consumption of server resources for compression before the connecting entity is authenticated). Therefore the following order is RECOMMENDED:</p>
     <ol>
       <li>TLS</li>
       <li>SASL</li>