← Back to context

Comment by bart__

3 years ago

Browsers will check if a certificate is in the transparency log, and alert the user if it isn't if I am not mistaken.

But XMPP clients do not, as far as I'm aware? and browsers aren't connecting to XMPP server ports.

  • Yeah usually the TLS libraries used by XMPP clients don't check SCTs. Not even all browsers do it. Chrome does it, Firefox does not for example.