RE: [Sip] Notifier Privacy Mechanism puzzle

[hisham.khartabil@nokia.com]

You might not want watchers to know that you have rejected their subscription to your presence info. Sending a 4xx - 6xx to the subscription will reveal such information. Sending a 2xx followed by a NOTIFY with bogus info may not reveal that sensitive policy information.

/Hisham

> -----Original Message-----
> From: ext Y01317@njupt.edu.cn [mailto:Y01317@njupt.edu.cn]
> Sent: Monday, May 26, 2003 12:07 PM
> To: sip@ietf.org
> Subject: [Sip] Notifier Privacy Mechanism puzzle
> 
> 
> Hi all, 
> 
>    I have a question about section 5.2 Notifier Privacy 
> Mechanism in RFC3265 
> 
>    <quote> 
> 
>   The mere act of returning a 200 or certain 4xx and 6xx responses to
>   SUBSCRIBE requests may, under certain circumstances, create privacy
>   concerns by revealing sensitive policy information. 
> 
>    </quote> 
> 
>    I do not unstand why it says a 4xx or 6xx response can 
> reveal sensitive 
> policy information, for example, the notifier send a 403 
> Forbidden or 401 
> Unauthorization , can this cause policy problem? I think no. 
> If it can , 
> anybody give me some explanations? 
> 
>   Thanks. 
> _______________________________________________
> Sip mailing list  https://www1.ietf.org/mailman/listinfo/sip
> This list is for NEW development of the core SIP Protocol
> Use sip-implementors@cs.columbia.edu for questions on current sip
> Use sipping@ietf.org for new developments on the application of sip
> 
_______________________________________________
Sip mailing list  https://www1.ietf.org/mailman/listinfo/sip
This list is for NEW development of the core SIP Protocol
Use sip-implementors@cs.columbia.edu for questions on current sip
Use sipping@ietf.org for new developments on the application of sip