Re: [webrtc-extensions] Invalid TURN credentials: What function should fail? (#52) from Anne van Kesteren via GitHub on 2021-02-23 (public-webrtc-logs@w3.org from February 2021)

From: Anne van Kesteren via GitHub <sysbot+gh@w3.org>
Date: Tue, 23 Feb 2021 12:06:52 +0000
To: public-webrtc-logs@w3.org
Message-ID: <issue_comment.created-784154437-1614082011-sysbot+gh@w3.org>

I think you have to carefully consider whether to expose the exact failure to sites. (See also https://github.com/w3c/webrtc-extensions/issues/52#issuecomment-728811972.) E.g., "wrong credentials" sounds like the kind of code someone trying to brute-force credentials might like.

-- 
GitHub Notification of comment by annevk
Please view or discuss this issue at https://github.com/w3c/webrtc-extensions/issues/52#issuecomment-784154437 using your GitHub account


-- 
Sent via github-notify-ml as configured in https://github.com/w3c/github-notify-ml-config

Received on Tuesday, 23 February 2021 12:06:54 UTC