|
|
|
|
|
|
by account42
128 days ago
|
|
|
But it does mean that the CA/B requirement change has zero positive effect on security of anything and only causes pointless work and breakage. Or to put it another way, the pragmatic response of the XMPP community shows that the effect of the change is not to remove the clientAuth capability from any certs but to effectively add it to all serverAuth certs no matter what the certificate says. |
|
|
The XMPP community can continue to adapt other infrastructure for their purposes and do the thing they do. It does not mean it has to be catered to.