log mod_s2s_auth_dane/mod_s2s_auth_dane.lua @ 2095:3b4a6d255d7a

age author description
Sun, 31 Jan 2016 12:38:51 +0100 Kim Alvefur mod_s2s_auth_dane: Correct message about not being able to support SPKI
Sat, 23 Jan 2016 20:34:26 +0100 Kim Alvefur mod_s2s_auth_dane: Check if cert:pubkey() is available
Mon, 11 Jan 2016 15:45:09 +0100 Kim Alvefur mod_s2s_auth_dane: Warn only if there enabled uses that can't be supported
Sat, 12 Dec 2015 17:00:25 +0100 Kim Alvefur mod_s2s_auth_dane: More DNS related debug logging
Sat, 12 Dec 2015 16:59:49 +0100 Kim Alvefur mod_s2s_auth_dane: Abort on bogus reply to SRV lookup
Sat, 12 Dec 2015 16:01:58 +0100 Kim Alvefur mod_s2s_auth_dane: Log as much as possible through session logger instance
Thu, 10 Dec 2015 23:24:55 +0100 Kim Alvefur mod_s2s_auth_dane: Add a telnet console command that exposes DANE information
Thu, 10 Dec 2015 23:24:11 +0100 Kim Alvefur mod_s2s_auth_dane: Keep DANE response around after the connection is established to aid in debugging
Thu, 10 Dec 2015 23:23:07 +0100 Kim Alvefur mod_s2s_auth_dane: Some more verbose debug logging
Mon, 16 Nov 2015 18:03:41 +0100 Kim Alvefur mod_s2s_auth_dane: Consider TLSA records with PKIX uses as supported (if enabled) even if the chain is invalid (if no match is found the session is considered insecure)
Thu, 05 Nov 2015 15:38:31 +0100 Kim Alvefur mod_s2s_auth_dane: Consider the current certificate chain status before checking PKIX-{EE,CA} TLSA records
Thu, 05 Nov 2015 14:10:11 +0100 Kim Alvefur mod_s2s_auth_dane: Support servers without SRV records by falling back to port 5269 and the bare hostname for TLSA lookups