Fri, 14 Mar 2014 14:15:56 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Simplify, but diverge from DANE-SRV draft. Will now look for _xmpp-server.example.com IN TLSA for both directions
|
Tue, 11 Mar 2014 21:13:40 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Only invalidate trust if we found any supported DANE records
|
Sun, 09 Mar 2014 23:17:17 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Improve handling of bogus data
|
Sun, 09 Mar 2014 23:08:41 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Only do TLSA lookup if it hasn't been attempted already
|
Sun, 09 Mar 2014 14:09:24 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Fix inverted nil check
|
Sun, 09 Mar 2014 13:44:29 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Do DANE lookups on outgoing stream features
|
Sun, 09 Mar 2014 13:43:27 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Improve logging
|
Sun, 09 Mar 2014 13:42:36 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: More comment changes
|
Sat, 08 Mar 2014 00:00:26 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Implement experimental method for doing DANE with client certificates on s2sin
|
Fri, 07 Mar 2014 23:30:34 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Add some comments
|
Wed, 05 Mar 2014 17:44:27 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Don't allow unencrypted connections if TLSA exists
|
Wed, 05 Mar 2014 17:42:15 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Verify that the pubkey method exists when the SPKI selector is used
|
Wed, 05 Mar 2014 17:40:44 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Delay s2sout state machine until we get TLSA reply
|
Wed, 05 Mar 2014 17:38:36 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Comment updates
|
Fri, 28 Feb 2014 15:37:55 +0100 |
Kim Alvefur |
Backed out changeset 853a382c9bd6
|
Fri, 28 Feb 2014 15:36:06 +0100 |
Kim Alvefur |
mod_turncredentials: Advertise the XEP-0215 feature (thanks Gryffus)
|
Sat, 04 Jan 2014 23:12:32 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Fix typo in comment (thanks albert)
|
Sat, 04 Jan 2014 20:07:14 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Style fixes
|
Sat, 04 Jan 2014 20:04:12 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Fix wording on validation failure
|
Fri, 03 Jan 2014 15:14:26 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Invalidate trust if there are TLSA records but no matches, or bogus results
|
Fri, 03 Jan 2014 15:00:05 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Warn about unsupported DANE params
|
Tue, 31 Dec 2013 02:16:19 +0100 |
Kim Alvefur |
mod_s2s_auth_dane: Experimental DANE implementation
|