mirror of
https://github.com/moparisthebest/xeps
synced 2024-11-24 10:12:19 -05:00
spacing
git-svn-id: file:///home/ksmith/gitmigration/svn/xmpp/trunk@3070 4b5297f7-1745-476d-ba37-a9c6900126ab
This commit is contained in:
Peter Saint-Andre
parent
06d024f18b
commit
c037d89abe
@ -265,7 +265,6 @@ oauth_version%3D1.0
|
||||
<p>In order for an application to determine whether an entity supports this protocol, where possible it SHOULD use the dynamic, presence-based profile of service discovery defined in &xep0115;. However, if an application has not received entity capabilities information from an entity, it SHOULD use explicit service discovery instead.</p>
|
||||
</section1>
|
||||
|
||||
|
||||
<section1 topic='Security Considerations' anchor='security'>
|
||||
<section2 topic='Replay Attacks' anchor='security-replay'>
|
||||
<p>Signatures generated according to the signature generation algorithm might be subject to replay attacks. However, inclusion of the XMPP "from" and "to" addresses limits these attacks to compromised servers or client-to-server connections. In addition, inclusion of the nonce value also helps to prevent replay attacks.</p>
|
||||
|
||||
Loading…
Reference in New Issue
Block a user