Mercurial > prosody-modules

view mod_s2s_log_certs/README.wiki @ 1782:29f3d6b7ad16

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Import wiki pages
author Kim Alvefur <zash@zash.se>
date Mon, 24 Aug 2015 16:43:56 +0200
parents
children 663e5d923ef0
line wrap: on
line source

#summary Log certificate status and fingerprint of remote servers

= Introduction =

This module produces info level log messages with the certificate status
and fingerprint every time an s2s connection is established.  It can also
optionally store this in persistant storage.

*info* jabber.org has a trusted valid certificate with SHA1: 11:C2:3D:87:3F:95:F8:13:F8:CA:81:33:71:36:A7:00:E0:01:95:ED

Fingerprints could then be added to [mod_s2s_auth_fingerprint].

= Configuration =

Add the module to the `modules_enabled` list.

{{{
modules_enabled = {
	...
	"s2s_log_certs";
}
}}}

If you want to keep track of how many times, and when a certificate is seen add

{{{s2s_log_certs_persist = true}}}

= Compatibility =

||trunk||Works||
||0.9||Works||
||0.8||Doesn't work||