Jenkins issue 11381 describes it.

What I'm going to showcase today is how to implement XMPP Pong on client side answering to XMPP Ping sent from server side to keep client alive when idle time is set. As you can see, XMPP Ping is the way the XMPP server is used to detect whether client is still alive or not, so according to XMPP Protocol, two options you have to respond XMPP Ping : a) Pong b) Pong not supported.

As not every XMPP client library supports XMPP Pong, i.e. Smack API 3.0.0.beta1, below sample implementation is provided based on the 2nd comment in this discussion : 

1) Create class Ping extends IQ implements IQProvider

2) Create PingProvider

3) Create PingPacketFilter to filter out XMPP Ping sent from server side.

4) Create Pong based on the protocol. In this case, we choose 'b' option which is to implement 'Pong not supported'.

5) Create PingPacketListener to answer XMPP Ping

6) Client responds to the server

At this point of time, you should be able to see the IllegalArgumentException thrown on server side, i.e. OpenFire, as below shown : 

This exception is designed and acceptable according to the protocol, so it should good enough to keep client connection alive.

- As a vendor, 

Currently, iOS MDM Push Cert portal has a problem so that all plist uploaded will get a 'Invalid Certificate Signing Request', and a fix is supposed to be installed on January 2012.

Please like or +1 if you find it helpful. Thanks!

This is the final post of this Series.

3. A different approach to patch management

4. Strong authentication to protect business user accounts

5. Disaster recovery - built right in to Google Apps

6. New apps status dashboard improves visibility

7. Google Apps data protections - verified by third parties

8. Protecting your data with encrypted connections

9. Google’s information security team - working to protect your data

10. Google Apps helps reduce the risk of data breaches

How will you feel when you know Google hires a team of world's leading security researchers to protect your day-to-day data, like Gmail, Google Docs, etc.? It feels cool, doesn't it?

Then how do they work? They monitor our applications and systems continuously, using sophisticated automated systems that are designed to detect unusual activity and block it or flag it for immediate analysis by our monitoring team. They provide end-user features including 2-step verification, which defeats many common attacks such as trying to break into an account using a stolen password. Their Safe Browsing service helps protect users against malware and phishing. All of this technology and expertise comes together to enhance the security of your Google Apps data, allowing your IT staff to focus more of their attention on your business’s strategic needs.

In such a world where Cloud Computing is being talked everywhere, how do you distinguish who is the trusted Cloud Computing provider?

Just $5/user/month will enhance your business with edge technology powered by Google, and Softhinker provides a hassle-free service to help your company equiped with excellent Google Apps!

Do you know what's the best merit of Google products I like? Open.

Merely sharing source codes to the world is not open in my dictionary. Google shares more than that. App status is one of what Google opens to the world, no matter the status is good or bad, though which users know how long is the downtime for Gmail recently, or was there a disruption or outrage for Google Sites?

Please don't regard this innovation as redundant or insignificant, especially when you're choosing which service/product is worth to invest. The best evidence is the statistics of its history, isn't it? Then how many service providers out there dare to provide the real app status to all of the world? Many of them just want to polish a beautiful financial report to the stock holders, rather than tell the truth. Google has the confidence to its technology, so it's open.

Let's take a look at some real data to gain more feeling. Last year, Gmail was up and running 99.984% of the time, and in the first half of 2011 Google has delivered 99.99% availability—that’s less than 5 minutes of downtime, on average, per month. A new App Status Dashboard gives you accurate information faster, which can be used to evaluate Google products before investing on it.

Once your confidence is established, please drop us an email, and Softhinker would like to bring amazing Google Apps solutions to your organization!

Disaster recovery of business data is, to some belief, a topic that only big company should consider, while oppositely I totally disagree with this point of view.

To some extent, those giat companies are so robust that it's contrastively easy to recover from the critical data lost. Well, how about small/medium enterprises? Can SMEs afford data disaster? Maybe just one time of data lost is enough to kill a start-up business, isn't it?

So to my opinion, it's equally important for both big boys and small players in terms of disaster recovery.

Then question is how to establish a trusted and cost-effective disaster recovery plan?

The most attractive part of how to leverage on this excellent solution is : drop softhinker an email today!

4. Strong authentication to protect business user accounts

If yes, it'll be risky especially when you create account in some website who may use the same password to try your account in other website. This happens frequently in currently popular mobile apps. For example, some one create a mobile app who declares that it can help you log in to your Facebook, Twitter, LinkedIn, etc. in one go. Familiar with this kind of apps? Then how do you know it will not remember and send your password to their own server for other purposes?

To some extent, it's still ok if the account is your personal one. But what if it's your business account?

Now, Google provides 2-factor authentication to drastically reduce the chance of having your account stolen by someone else. Simply speaking, other than username and password, there will be a one-time code randomly generated and send to your phone by SMS or Voice call after you log in, then you just need to key in what you get to gain access to your valuable account. This 2-factor authentication is frequently used in online banking system, and now Google applies it in all Google accounts. If your mobile device cannot receive text message or voice call, i.e. tablet, an app called Google Authenticator provided by Google can also help you get the one-time code immediately even without internet! Is that cool? Enable it in the account page now!

Well, what's more for Google Apps for Business account? Of course it provides stronger protection and convenience! For businesses that already use separate authentication and would like to continue using them, Google Apps for Business provides SAML(Security Assertion Markup Language)-based SSO(Single Sign On) to do this. This technology also allow business to apply custom security features, password management policies, and their own 2-factor authentication solution. So, this SSO capability is an alternative to the standard 2-factor authentication that is included in normal Google Apps if you think it's not secure enough for your business.

4. 强壮的验证模式保护商业用户帐户

在阅读之前请先回答这样一个问题：你在不同网站的帐户是使用同样的密码吗？

如果是的话，这将存在这样的风险：某些网站可能用你的密码来尝试登录其他的网站。这个经常发生在当前很流行的手机软件中。比如，某手机软件提供这样的功能——宣称可以帮你同时登录Facebook, Twitter, LinkedIn等等。很熟悉这样的软件对吗？那么你怎么知道它不会记录你的密码并发送到他们自己的服务器上另作他用呢？

从某种角度上来说，如果帐户是你个人的，然后密码被盗用，这样还可以接受，但是如果是商业帐户怎么办？

现在，Google提供了“双因子验证”，可以极大地减少帐户被盗的几率。简单来说，在用户名和密码登录成功后，将会有一个随机产生的一次性验证码发送到你手机上，可以是短信，也可以是电话， 然后你只需要输入该验证码就可以通过验证进入到你的帐户了。这种方式多用于在线银行系统的登录验证，现在Google把这种高安全性的方式应用到了所有的Google帐户中！如果你的移动设备不能接收短信或电话，比如：平板电脑，Google提供了一个叫做Google验证器的手机程序帮你获取验证码，而且它不需要任何网络连接！很酷对吗？现在就在你的帐户页面启用它吧！

那么，对于Google Apps企业版来说还有什么更多的功能吗？当然！对于那些已经在使用另外的验证方式并且想继续使用它的公司来说，Google Apps企业版提供了基于SAML（Security Assertion Markup Language）的单点登录（Single Sign On）来实现。这种科技允许企业应用自定义的安全功能、密码管理策略、和他们自己的“双因子验证”。所以，这是一种替代Google Apps提供的常规安全验证机制的选择如果你觉得常规安全验证机制对于你的商业来说不够安全的话。