Proposal for new XMPP account settings: worse or better?

Paul Aurich paul at darkrain42.org
Fri Aug 27 15:59:19 EDT 2010


On 2010-08-27 00:29, Mark Doliner wrote:
> I don't think I understand the need for "Use STARTTLS (if available)."
>  Shouldn't we always use it if it's available?  I believe that's what
> we do now, right?

The default currently is actually to require TLS, but "if available" is
needed for when a server doesn't support encryption (e.g. Facebook).

As Ethan pointed out, there's also technically the option of "None"
(i.e. never use TLS), but I was only planning on adding that as a
(hidden) build option, to be used for developer testing.

> Also, maybe "Require encryption"?

That also works for me.  Ethan, you said you preferred TLS instead of
STARTTLS; any preference between "Require encryption" and "Require TLS"?

Also, what about "Use TLS (if available)" vs "If available" (or maybe
even "Use TLS", but I have concerns about the translation of that losing
the distinction between Require and Use)?

Another possibility for improvement is for the prpl to automatically try
both upgrading via STARTTLS and then SSL immediately if the opening
stream causes the server to hang up (which is probably more friendly for
the user, albeit adding a lot of complexity)

~Paul

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 897 bytes
Desc: OpenPGP digital signature
URL: <http://pidgin.im/pipermail/devel/attachments/20100827/4f735269/attachment.sig>


More information about the Devel mailing list