As a user, what kind of protection do you expect? Who/What are you trying to protect against?

What implementation (client/server/something else?) allows you to do this? What would be missing?

@pep
mod
admin
creator
link
fedilink
21M

I started writing an answer here yesterday, and I decided to write an article instead: https://bouah.net/2022/04/an-overview-of-my-threat-model/

Sam
admin
link
fedilink
21M

One thing I’d like to see better protections for as a user is privilege delegation. Right now if I want to, eg. log into Movim without hosting my own, I’d have to give them complete control of my XMPP account by entering my username and password into their app. It would be nice if we had something where I could generate an application token and use that instead and it would only grant them access to the specific pub-sub nodes and permissions that they request.

@pep
mod
admin
creator
link
fedilink
21M

I agree this would be nice. I’ve also been wanting something like this à la OAuth scopes.

Anything related to Security (Confidentiality, Integrity, Availability – CIA), Privacy, etc.

  • 0 users online
  • 1 user / day
  • 1 user / week
  • 1 user / month
  • 3 users / 6 months
  • 29 subscribers
  • 2 Posts
  • 4 Comments
  • Modlog