From e4c2bbec3b28595408593dd0699414f1bbee0850 Mon Sep 17 00:00:00 2001
From: Unknown User <unknown@localhost>
Date: Wed, 9 Sep 2009 19:39:17 +0000
Subject: [PATCH] added pointer to Security Considerations of XEP-0203 /psa

git-svn-id: file:///home/ksmith/gitmigration/svn/xmpp/trunk@3399 4b5297f7-1745-476d-ba37-a9c6900126ab
---
 xep-0045.xml | 3 +++
 xep-0160.xml | 1 +
 2 files changed, 4 insertions(+)

diff --git a/xep-0045.xml b/xep-0045.xml
index 8a4674ca..20cf1846 100644
--- a/xep-0045.xml
+++ b/xep-0045.xml
@@ -4549,6 +4549,9 @@
     </ol>
     <p>These attacks can be mitigated but not completely prevented through the liberal use of administrative actions such as banning, the presence of automated room bots with administrative privileges, implementation of intelligent content filtering, checking the IP addresses of connected users (not always possible in a distributed system), applying voice rules to presence as well as messaging, matching room nicks using more stringent rules than the Resourceprep profile of stringprep, etc. However, experience has shown that it is impossible to fully prevent attacks of this kind.</p>
   </section2>
+  <section2 topic='Other Considerations' anchor='security-other'>
+    <p>See <cite>XEP-0203</cite> for security considerations regarding the inclusion and processing of delayed delivery notations.</p>
+  </section2>
 </section1>
 <section1 topic='IANA Considerations' anchor='iana'>
   <p>This document requires no interaction with &IANA;.</p>
diff --git a/xep-0160.xml b/xep-0160.xml
index 6c314896..ea7f7a73 100644
--- a/xep-0160.xml
+++ b/xep-0160.xml
@@ -122,6 +122,7 @@
 <section1 topic='Security Considerations' anchor='security'>
   <p>A message stored offline may not be readable by the recipient if the message was encrypted using a session-based encryption method such as &xep0116; or if the key used in object encryption is revoked after the message was sent but before it is read.</p>
   <p>In certain countries, offline storage of message stanzas may introduce legal requirements or privacy vulnerabilities that do not apply to messages that are delivered immediately and never stored on an intermediate server.</p>
+  <p>See <cite>XEP-0203</cite> for security considerations regarding the inclusion and processing of delayed delivery notations.</p>
 </section1>
 <section1 topic='IANA Considerations' anchor='iana'>
   <p>This document requires no interaction with &IANA;.</p>