annotate mod_s2s_log_certs.wiki @ 493:278feae4f92e

add page
author Kim Alvefur <zash@zash.se>
date Tue, 18 Nov 2014 14:03:36 +0100
parents ce40ff792eba
children
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
375
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
1 #summary Log certificate status and fingerprint of remote servers
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
2
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
3 = Introduction =
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
4
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
5 This module produces info level log messages with the certificate status
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
6 and fingerprint every time an s2s connection is established. It can also
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
7 optionally store this in persistant storage.
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
8
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
9 *info* jabber.org has a trusted valid certificate with SHA1: 11:C2:3D:87:3F:95:F8:13:F8:CA:81:33:71:36:A7:00:E0:01:95:ED
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
10
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
11 Fingerprints could then be added to [mod_s2s_auth_fingerprint].
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
12
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
13 = Configuration =
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
14
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
15 Add the module to the `modules_enabled` list.
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
16
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
17 {{{
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
18 modules_enabled = {
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
19 ...
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
20 "s2s_log_certs";
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
21 }
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
22 }}}
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
23
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
24 If you want to keep track of how many times, and when a certificate is seen add
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
25
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
26 {{{s2s_log_certs_persist = true}}}
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
27
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
28 = Compatibility =
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
29
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
30 ||trunk||Works||
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
31 ||0.9||Works||
ce40ff792eba mod_s2s_log_certs: Add wiki page
Kim Alvefur <zash@zash.se>
parents:
diff changeset
32 ||0.8||Doesn't work||