log mod_s2s_auth_dane/mod_s2s_auth_dane.lua @ 1956:1a5be0ecc876

age author description
Mon, 16 Nov 2015 18:03:41 +0100 Kim Alvefur mod_s2s_auth_dane: Consider TLSA records with PKIX uses as supported (if enabled) even if the chain is invalid (if no match is found the session is considered insecure)
Thu, 05 Nov 2015 15:38:31 +0100 Kim Alvefur mod_s2s_auth_dane: Consider the current certificate chain status before checking PKIX-{EE,CA} TLSA records
Thu, 05 Nov 2015 14:10:11 +0100 Kim Alvefur mod_s2s_auth_dane: Support servers without SRV records by falling back to port 5269 and the bare hostname for TLSA lookups
Thu, 21 May 2015 11:14:16 +0200 Kim Alvefur mod_s2s_auth_dane: Ignore mutating of the 'module' global, that is ok in prosody plugins [luacheck]
Thu, 21 May 2015 10:28:02 +0200 Kim Alvefur mod_s2s_auth_dane: Validate names of DANE-TA certs
Wed, 06 May 2015 00:53:27 +0200 Kim Alvefur mod_s2s_auth_dane: Simplify cases where there are only one SRV record
Wed, 06 May 2015 00:51:46 +0200 Kim Alvefur mod_s2s_auth_dane: Don't count number of RRs in DNS reply if the DNS lib already did