|
1782
|
1 #summary Stops prosody from including starttls into available features for specified remote servers.
|
|
|
2 #labels Stage-Beta
|
|
|
3
|
|
|
4 = Details =
|
|
|
5
|
|
|
6 Let's you stop Prosody from sending <starttls xmlns='urn:ietf:params:xml:ns:xmpp-tls'> feature to choppy/buggy servers which therefore would fail to re-negotiate and use a secure stream. (e.g. [http://issues.igniterealtime.org/browse/OF-405 OpenFire 3.7.0])
|
|
|
7
|
|
|
8 = Usage =
|
|
|
9
|
|
|
10 Copy the plugin into your prosody's modules directory.
|
|
|
11
|
|
|
12 And add it between your enabled modules into the global section (modules_enabled).
|
|
|
13
|
|
|
14 Then list each host as follow:
|
|
|
15 {{{
|
|
|
16 tls_s2s_blacklist = { "host1.tld", "host2.tld", "host3.tld" }
|
|
|
17 }}}
|
|
|
18
|
|
|
19 In the unfortunate case of OpenFire... you can add the Server's ip address directly as it may not send proper rfc6121 requests.
|
|
|
20 {{{
|
|
|
21 tls_s2s_blacklist_ip = { "a.a.a.a", "b.b.b.b", "c.c.c.c" }
|
|
|
22 }}}
|
|
|
23
|
|
|
24 = Compatibility =
|
|
|
25
|
|
|
26 It's supposed to work with 0.7-0.8.x |
