view mod_secure_interfaces/mod_secure_interfaces.lua @ 1203:5294c8c1861c

mod_s2s_keysize_policy: Don't trust keys weaker than 2048 bit RSA after 31 December 2013
author Kim Alvefur <zash@zash.se>
date Sun, 29 Sep 2013 19:10:39 +0200
parents a464261deba8
children 55f3ab952d06
line wrap: on
line source

local secure_interfaces = module:get_option_set("secure_interfaces", { "127.0.0.1" });

module:hook("stream-features", function (event)
	local session = event.origin;
	if session.type ~= "c2s_unauthed" then return; end
	local socket = session.conn:socket();
	if not socket.getsockname then return; end
	local localip = socket:getsockname();
	if secure_interfaces:contains(localip) then
		module:log("debug", "Marking session from %s as secure", session.ip or "[?]");
		session.secure = true;
	end
end, 2500);