mirror of
https://github.com/moparisthebest/xeps
synced 2025-02-16 07:10:15 -05:00
ProtoXEP IoT Discovery: Removed any hard-coded account names.
This commit is contained in:
parent
fe1055579a
commit
85380e95b2
@ -1,4 +1,8 @@
|
|||||||
<?xml version='1.0' encoding='UTF-8'?>
|
<?xml version='1.0' encoding='UTF-8'?>
|
||||||
|
<!-- TODO: Sub-namespace for Registration Clients.
|
||||||
|
urn:xmpp:iot:discovery:regunit - Registration Units (can claim ownership)
|
||||||
|
-->
|
||||||
|
<!-- TODO: TBD items -->
|
||||||
<!DOCTYPE xep SYSTEM 'xep.dtd' [
|
<!DOCTYPE xep SYSTEM 'xep.dtd' [
|
||||||
<!ENTITY % ents SYSTEM 'xep.ent'>
|
<!ENTITY % ents SYSTEM 'xep.ent'>
|
||||||
%ents;
|
%ents;
|
||||||
@ -42,10 +46,18 @@
|
|||||||
<jid>TBD</jid>
|
<jid>TBD</jid>
|
||||||
<uri>http://www-rnks.informatik.tu-cottbus.de/~rklauck</uri>
|
<uri>http://www-rnks.informatik.tu-cottbus.de/~rklauck</uri>
|
||||||
</author>
|
</author>
|
||||||
|
<revision>
|
||||||
|
<version>0.0.2</version>
|
||||||
|
<date>2014-04-07</date>
|
||||||
|
<initials>pw</initials>
|
||||||
|
<remark>
|
||||||
|
<p>Removed any hard-coded account names.</p>
|
||||||
|
</remark>
|
||||||
|
</revision>
|
||||||
<revision>
|
<revision>
|
||||||
<version>0.0.1</version>
|
<version>0.0.1</version>
|
||||||
<date>2014-03-11</date>
|
<date>2014-03-11</date>
|
||||||
<initials>pw</initials>
|
<initials>pw,rk</initials>
|
||||||
<remark>
|
<remark>
|
||||||
<p>First draft.</p>
|
<p>First draft.</p>
|
||||||
</remark>
|
</remark>
|
||||||
@ -543,9 +555,6 @@
|
|||||||
XMPP Server itself. This can be found out by sending a discovery request to the server,
|
XMPP Server itself. This can be found out by sending a discovery request to the server,
|
||||||
as described in <link url='#support'>Determining Support</link>.
|
as described in <link url='#support'>Determining Support</link>.
|
||||||
</li>
|
</li>
|
||||||
<li>
|
|
||||||
The account 'discovery' on the same domain. (For example: discovery@jabber.org)
|
|
||||||
</li>
|
|
||||||
<li>
|
<li>
|
||||||
Search for accounts on the XMPP server with nick-name "discovery". Search is performed using &xep0055;
|
Search for accounts on the XMPP server with nick-name "discovery". Search is performed using &xep0055;
|
||||||
</li>
|
</li>
|
||||||
@ -969,9 +978,6 @@
|
|||||||
The Owner itself can be a Provisioning Server. This can be found out by sending a discovery request to the Thing Registry,
|
The Owner itself can be a Provisioning Server. This can be found out by sending a discovery request to the Thing Registry,
|
||||||
as described in <link url='#support'>Determining Support</link>.
|
as described in <link url='#support'>Determining Support</link>.
|
||||||
</li>
|
</li>
|
||||||
<li>
|
|
||||||
The account 'provisioning' on the same domain. (For example: provisioning@jabber.org)
|
|
||||||
</li>
|
|
||||||
<li>
|
<li>
|
||||||
Search for accounts on the XMPP server with nick-name "provisioning". Search is performed using &xep0055;
|
Search for accounts on the XMPP server with nick-name "provisioning". Search is performed using &xep0055;
|
||||||
</li>
|
</li>
|
||||||
@ -1219,7 +1225,7 @@
|
|||||||
<numRange name='V' min='1' minIncluded='true' max='2' maxIncluded='false'/>
|
<numRange name='V' min='1' minIncluded='true' max='2' maxIncluded='false'/>
|
||||||
<numRange name='LON' min='-72' minIncluded='true' max='-70' maxIncluded='true'/>
|
<numRange name='LON' min='-72' minIncluded='true' max='-70' maxIncluded='true'/>
|
||||||
<numRange name='LAT' min='-34' minIncluded='true' max='-33' maxIncluded='true'/>
|
<numRange name='LAT' min='-34' minIncluded='true' max='-33' maxIncluded='true'/>
|
||||||
</update>
|
</search>
|
||||||
</iq>]]>
|
</iq>]]>
|
||||||
</example>
|
</example>
|
||||||
<p>
|
<p>
|
||||||
@ -1610,9 +1616,9 @@
|
|||||||
<section2 topic='Hijacking predefined JIDs'>
|
<section2 topic='Hijacking predefined JIDs'>
|
||||||
<p>
|
<p>
|
||||||
If using predefined user names when searching for a Thing Registry or Provisioning Server, care must be taken to which XMPP Server things connect.
|
If using predefined user names when searching for a Thing Registry or Provisioning Server, care must be taken to which XMPP Server things connect.
|
||||||
It might be possible for third parties to register these predefined account names (for example discovery@jabber.org or provisioning@jabber.org), and
|
It might be possible for third parties to register these predefined account names, and pretend to be a Thing Registry or Provisioning Server and in this way hijack
|
||||||
pretend to be a Thing Registry or Provisioning Server and in this way hijack unsuspecting Things. If installing things using this method of finding
|
unsuspecting Things. If installing things using this method of finding a Thing Registry or Provisioning Server, these accounts must be registered beforehand, to make
|
||||||
a Thing Registry or Provisioning Server, these accounts must be registered beforehand, to make sure the things cannot be hijacked.
|
sure the things cannot be hijacked.
|
||||||
</p>
|
</p>
|
||||||
</section2>
|
</section2>
|
||||||
<section2 topic='Hijacking nicknames'>
|
<section2 topic='Hijacking nicknames'>
|
||||||
@ -1888,8 +1894,8 @@
|
|||||||
</section1>
|
</section1>
|
||||||
<section1 topic='Acknowledgements' anchor='ack'>
|
<section1 topic='Acknowledgements' anchor='ack'>
|
||||||
<p>
|
<p>
|
||||||
Thanks to Henrik Svedlund, Joachim Lindborg, Joakim Eriksson, Joakim Ramberg, Johannes Hund, Karin Forsell, Lars Åkerskog, Olof Zandrén, Steffen Larsen Teemu Väisänen and
|
Thanks to Henrik Svedlund, Ivan Vučica, Joachim Lindborg, Joakim Eriksson, Joakim Ramberg, Johannes Hund, Karin Forsell, Kevin Smith, Lars Åkerskog, Olof Zandrén,
|
||||||
Yusuke Doi for all valuable feedback.
|
Philipp Hancke, Steffen Larsen, Teemu Väisänen and Yusuke Doi for all valuable feedback.
|
||||||
</p>
|
</p>
|
||||||
</section1>
|
</section1>
|
||||||
</xep>
|
</xep>
|
Loading…
Reference in New Issue
Block a user