Mercurial > prosody-modules

view mod_poke_strangers/README.markdown @ 5549:01a0b67a9afd

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mod_http_oauth2: Add TODO about disabling password grant Per recommendation in draft-ietf-oauth-security-topics-23 it should at the very least be disabled by default. However since this is used by the Snikket web portal some care needs to be taken not to break this, unless it's already broken by other changes to this module.
author Kim Alvefur <zash@zash.se>
date Fri, 16 Jun 2023 00:06:53 +0200
parents 06faf7a149e3
children
line wrap: on
line source

---
labels:
- 'Stage-Alpha'
summary: 'Query the features and version of JIDs sending messages to contacts they are not subscribed to.'
...

Introduction
============

In order to build heuristics for which messages are spam, it is necessary to
log as many details as possible about the spammers. This module sends a
version and disco query whenever a message is received from a JID to a user it
is not subscribed to. The results are printed to Prosody's log file at the
'info' level. Queried full JIDs are not queried again until Prosody restarts.

The queries are sent regardless of whether the local user exists, so it does
not reveal if an account is active.

Compatibility
=============

  ----- -------
  0.9   Works
  ----- -------