Mercurial > prosody-modules

view mod_s2s_never_encrypt_blacklist/mod_s2s_never_encrypt_blacklist.lua @ 817:f826b5935175

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
mod_host_guard: replace checking host object with checking the configuration for the authentication option set to anonymous, I suppose that was the reason I imported configmanager but probably lost that somewhere in the process.
author Marco Cirillo <maranda@lightwitch.org>
date Wed, 12 Sep 2012 20:08:48 +0000
parents 2b71ba2739e0
children ef859c9d42c4
line wrap: on
line source

-- Filter out servers which gets choppy and buggy when it comes to starttls.

local bad_servers = module:get_option_set("tls_s2s_blacklist")
local bad_servers_ip = module:get_option_set("tls_s2s_blacklist_ip")

local function disable_tls_for_baddies_in(event)
	if bad_servers:contains(event.origin.to_host) or bad_servers_ip:contains(event.origin.conn:ip())
		then event.origin.conn.starttls = nil end
end

local function disable_tls_for_baddies_out(event)
	if bad_servers:contains(event.origin.from_host) or bad_servers_ip:contains(event.origin.conn:ip())
		then event.origin.conn.starttls = nil end
end

module:hook("s2s-stream-features", disable_tls_for_baddies_out, 10)
module:hook("stanza/http://etherx.jabber.org/streams:features", disable_tls_for_baddies_in, 510)