Wed, 01 Jun 2016 22:33:51 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Use util.async if available (current prosody trunk)
|
Sat, 28 May 2016 16:55:43 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Move pausing code to a function
|
Sat, 28 May 2016 13:34:43 +0200 |
Kim Alvefur |
Backed out changeset f00cbfb812cd, it only half-worked and broke things
|
Thu, 26 May 2016 15:36:19 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Remove unused local
|
Thu, 26 May 2016 15:35:52 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Attempt a new approach to async lookups that doesn't depend on connection pausing
|
Thu, 26 May 2016 15:31:32 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Make sure dane field has correct type
|
Sun, 31 Jan 2016 12:38:51 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Correct message about not being able to support SPKI
|
Sat, 23 Jan 2016 20:34:26 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Check if cert:pubkey() is available
|
Mon, 11 Jan 2016 15:45:09 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Warn only if there enabled uses that can't be supported
|
Sat, 12 Dec 2015 17:00:25 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: More DNS related debug logging
|
Sat, 12 Dec 2015 16:59:49 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Abort on bogus reply to SRV lookup
|
Sat, 12 Dec 2015 16:01:58 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Log as much as possible through session logger instance
|
Thu, 10 Dec 2015 23:24:55 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Add a telnet console command that exposes DANE information
|
Thu, 10 Dec 2015 23:24:11 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Keep DANE response around after the connection is established to aid in debugging
|
Thu, 10 Dec 2015 23:23:07 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Some more verbose debug logging
|
Mon, 16 Nov 2015 18:03:41 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Consider TLSA records with PKIX uses as supported (if enabled) even if the chain is invalid (if no match is found the session is considered insecure)
|
Thu, 05 Nov 2015 15:38:31 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Consider the current certificate chain status before checking PKIX-{EE,CA} TLSA records
|
Thu, 05 Nov 2015 14:10:11 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Support servers without SRV records by falling back to port 5269 and the bare hostname for TLSA lookups
|
Thu, 21 May 2015 11:14:16 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Ignore mutating of the 'module' global, that is ok in prosody plugins [luacheck]
|
Thu, 21 May 2015 10:28:02 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Validate names of DANE-TA certs
|
Wed, 06 May 2015 00:53:27 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Simplify cases where there are only one SRV record
|
Wed, 06 May 2015 00:51:46 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Don't count number of RRs in DNS reply if the DNS lib already did
|
Mon, 13 Apr 2015 13:36:38 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Abort earlier for sessions from hosts that don't say who they are
|
Mon, 13 Apr 2015 13:35:37 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Demote log message about failure to ASCII-ify hostname from error to warning
|
Tue, 07 Apr 2015 17:35:20 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Cleanup [luacheck]
|
Tue, 31 Mar 2015 20:57:34 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Update for recent changes in Zashs LuaSec branch
|
Mon, 16 Mar 2015 16:19:53 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Comments and cleanup
|
Tue, 16 Sep 2014 19:55:54 +0200 |
Kim Alvefur |
mod_s2s_auth_dane: Include hostname when logging a failure
|