comparison mod_warn_legacy_tls/mod_warn_legacy_tls.lua @ 3726:362c45f67704

mod_warn_legacy_tls: Copy of mod_sslv3_warn for TLS now that <1.2 is becoming obsolete
author Kim Alvefur <zash@zash.se>
date Sun, 03 Nov 2019 12:56:25 +0100
parents mod_sslv3_warn/mod_sslv3_warn.lua@37cef218ba20
children 36023eb3254e
comparison
equal deleted inserted replaced
3725:19e43b7a969d 3726:362c45f67704
1 local st = require"util.stanza";
2 local host = module.host;
3
4 local warning_message = module:get_option_string("sslv3_warning", "Your connection is encrypted using the SSL 3.0 protocol, which has been demonstrated to be insecure and will be disabled soon. Please upgrade your client.");
5
6 module:hook("resource-bind", function (event)
7 local session = event.session;
8 module:log("debug", "mod_%s sees that %s logged in", module.name, session.username);
9
10 local ok, protocol = pcall(function(session)
11 return session.conn:socket():info"protocol";
12 end, session);
13 if not ok then
14 module:log("debug", protocol);
15 elseif protocol == "SSLv3" then
16 module:add_timer(15, function ()
17 if session.type == "c2s" and session.resource then
18 session.send(st.message({ from = host, type = "headline", to = session.full_jid }, warning_message));
19 end
20 end);
21 end
22 end);