changeset 401:f7bca760e9b5

mod_watchuntrusted: Created a wiki page describing this module
author thijsalkemade@gmail.com
date Wed, 11 Sep 2013 23:32:56 +0000
parents c5d049266555
children 421d0865f89d
files mod_watchuntrusted.wiki
diffstat 1 files changed, 30 insertions(+), 0 deletions(-) [+]
line wrap: on
line diff
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/mod_watchuntrusted.wiki	Wed Sep 11 23:32:56 2013 +0000
@@ -0,0 +1,30 @@
+#summary Warn admins about outgoing s2s connections that are refused due to invalid or untrusted certificates
+#labels Stage-Alpha
+
+= Introduction =
+
+Similar to mod_watchregistrations, this module warns admins when an s2s connection fails due for encryption or trust reasons.
+
+The certificate shows the SHA1 hash, so it can easily be used together with mod_s2s_auth_fingerprint.
+
+= Configuration =
+
+{{{
+modules_enabled = {
+	-- other modules --
+	"watchuntrusted",
+
+}
+
+untrusted_fail_watchers = { "admin@example.lit" }
+untrusted_fail_notification = "Establishing a secure connection from $from_host to $to_host failed. Certificate hash: $sha1. $errors"
+}}}
+
+|| *Option*                          || *Default* || *Description* ||
+|| untrusted_fail_watchers || All admins      || The users to send the message to ||
+|| untrusted_fail_notification         || "Establishing a secure connection from $from_host to $to_host failed. Certificate hash: $sha1. $errors"      || The message to send, $from_host, $to_host, $sha1 and $errors are replaced  ||
+
+
+= Compatibility =
+
+||trunk||Works||
\ No newline at end of file