view mod_poke_strangers/README.markdown @ 5222:578a72982bb2

mod_http_oauth2: Separate extracting credentials from requests and verifying The token endpoint also uses Basic auth, but the password would be the client_secret, so we need to verify against that instead of using test_password(). Splitting this up here avoids code duplication. Possibly this new function could go into util.http...
author Matthew Wild <mwild1@gmail.com>
date Tue, 07 Mar 2023 15:18:41 +0000
parents 06faf7a149e3
children
line wrap: on
line source

---
labels:
- 'Stage-Alpha'
summary: 'Query the features and version of JIDs sending messages to contacts they are not subscribed to.'
...

Introduction
============

In order to build heuristics for which messages are spam, it is necessary to
log as many details as possible about the spammers. This module sends a
version and disco query whenever a message is received from a JID to a user it
is not subscribed to. The results are printed to Prosody's log file at the
'info' level. Queried full JIDs are not queried again until Prosody restarts.

The queries are sent regardless of whether the local user exists, so it does
not reveal if an account is active.

Compatibility
=============

  ----- -------
  0.9   Works
  ----- -------