Difference between revisions of "Client Test Cases"

Jump to navigation Jump to search

Client Test Cases (view source)

Revision as of 14:13, 13 September 2019

385 bytes added ,  14:13, 13 September 2019
→‎Impersonation attacks
Line 28: Line 28:
# Carbon sender impersonation [https://rt-solutions.de/en/2017/01/cve-2017-5589_xmpp_carbons/ CVE-2017-5589]  
# Carbon sender impersonation [https://rt-solutions.de/en/2017/01/cve-2017-5589_xmpp_carbons/ CVE-2017-5589]  
# MAM impersonation: a <message> from a remote JID containing a <result> with a wrapped <message>
# MAM impersonation: a <message> from a remote JID containing a <result> with a wrapped <message>
# Impersonation via XEP-0297 Stanza Forwarding:
    Similar to the MAM impersonation but with a top-level <forward> element.
    Clients are supposed to clearly indicate that a message has been forwarded.
    Misbehaving clients might instead show the forwarded message as if it came from that person.
    There's also zero guarantee that a forwarded message is not in fact a forgery.


= Multi User Chats =
= Multi User Chats =
Jcbrand
180

edits

Retrieved from "https://wiki.xmpp.org/web/Special:MobileDiff/11613"

Navigation menu