Coccinella

XEP-0092: Software Version: hide OS

Bug #149614 reported by sander on 2007-10-05

Affects		Status	Importance	Assigned to	Milestone
	Coccinella	Fix Released	High	Mats	Coccinella 0.96.4

Bug Description

AFAICS there is a bug in the implementation of this spec.

Quotes from the XEP:
"<os/> -- The operating system of the queried entity. This element is OPTIONAL in a result (see also the Security Considerations)."

"Revealing the application's underlying operating system may open the user or system to attacks directed against that operating system; therefore, an application MUST provide a way for a human user or administrator to disable sharing of information about the operating system."

URL: http://www.xmpp.org/extensions/xep-0092.html#security

sander (s-devrieze) on 2007-10-05

Changed in coccinella:
assignee:	nobody → matsben
importance:	Undecided → High

Revision history for this message

Mats (matsben) wrote on 2007-10-06:

Now controlled by config() with default off.

Changed in coccinella:
status:	New → Fix Committed

sander (s-devrieze) on 2007-12-04

Changed in coccinella:
milestone:	none → 0.96.4

sander (s-devrieze) on 2007-12-14

Changed in coccinella:
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.