Mercurial > prosody-wiki

annotate mod_s2s_never_encrypt_blacklist.wiki @ 212:8935d59dcf86

Find changesets by keywords (author, files, the commit message), revision number or hash, or revset expression.
Linked up the OpenFire bug
author daniel@aleksand.no
date Sat, 03 Sep 2011 01:47:58 +0000
parents ef34b35b8a73
children 7c960f1b4cf8
Ignore whitespace changes - Everywhere: Within whitespace: At end of lines:
rev   line source
205
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
1 #labels Stage-Beta
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
2 = Details =
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
3
212
8935d59dcf86 Linked up the OpenFire bug
daniel@aleksand.no
parents: 211
diff changeset
4 Let's you stop Prosody from sending <starttls xmlns='urn:ietf:params:xml:ns:xmpp-tls'> feature to choppy/buggy servers which therefore would fail to re-negotiate and use a secure stream. (e.g. [http://issues.igniterealtime.org/browse/OF-405 OpenFire 3.7.0])
205
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
5
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
6 = Usage =
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
7
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
8 Copy the plugin into your prosody's modules directory.
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
9
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
10 And add it between your enabled modules into the global section (modules_enabled).
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
11
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
12 Then list each host as follow:
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
13 {{{
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
14 tls_s2s_blacklist = { "host1.tld", "host2.tld", "host3.tld" }
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
15 }}}
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
16
211
ef34b35b8a73 added second ip option.
maranda3985@gmail.com
parents: 206
diff changeset
17 In the unfortunate case of OpenFire... you can add the Server's ip address directly as it may not send proper rfc6121 requests.
ef34b35b8a73 added second ip option.
maranda3985@gmail.com
parents: 206
diff changeset
18 {{{
ef34b35b8a73 added second ip option.
maranda3985@gmail.com
parents: 206
diff changeset
19 tls_s2s_blacklist_ip = { "a.a.a.a", "b.b.b.b", "c.c.c.c" }
ef34b35b8a73 added second ip option.
maranda3985@gmail.com
parents: 206
diff changeset
20 }}}
ef34b35b8a73 added second ip option.
maranda3985@gmail.com
parents: 206
diff changeset
21
205
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
22 = Compatibility =
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
23
97e15fe16c0b wiki: added page for mod_s2s_never_encrypt_blacklist
maranda3985@gmail.com
parents:
diff changeset
24 It's supposed to work with 0.7-0.8.x