router-filter.apple.xml [plain text]
<!-- This is the router filter ruleset.
It allows for finegrained routing control.
to, from - wildmat patterns
absent attribute matches absence of attribute
"*" matches any value of attribute
what - XPath like query
error - none given means allow, if given means deny
this is an XMPP RFC defined error condition
-->
<filter>
<!-- first allow any routing without to or from - it's internal. -->
<!--
<rule/>
<rule from="*"/>
<rule to="*"/>
-->
<!-- don't allow msn registrations, but... -->
<!-- <rule from="dearhart@example.org*" to="msn.example.org*"/> -->
<!-- <rule error="not-allowed" from="*" to="msn.example.org" what="iq/query?xmlns=jabber:x:register"/> -->
<!-- this user should not talk with evil -->
<!-- <rule error="not-allowed" from="user@example.org" to="*@evil.gov*" what="message"/> -->
<!-- I don't want evil to read my data -->
<!-- <rule error="forbidden" from="*@evil.gov*" to="admin@example.org" what="iq/vCard"/> -->
<!-- and finally, let's blind the world with some exceptions -->
<!--
<rule from="*@goodguys.org*" to="*" what="presence"/>
<rule from="admin@example.org*" to="*" what="presence"/>
<rule error="not-acceptable" from="*" to="*" what="presence"/>
-->
<rule id="apple000"/>
<rule id="apple001" from="*"/>
<rule id="apple002" to="*"/>
<rule id="apple003" from="pubsub.*" to="*" what="message"/>
<rule id="apple004" from="*" to="pubsub.*" what="message"/>
<rule id="apple005" error="forbidden" from="*" to="*" what="message"/>
<rule id="apple006" error="forbidden" from="*" to="*" what="iq/vCard"/>
</filter>
<!--
vim: syntax=xml
-->