Diff

mod_watchuntrusted/README.wiki @ 1782:29f3d6b7ad16

Import wiki pages
author Kim Alvefur <zash@zash.se>
date Mon, 24 Aug 2015 16:43:56 +0200
line wrap: on
line diff
--- /dev/null	Thu Jan 01 00:00:00 1970 +0000
+++ b/mod_watchuntrusted/README.wiki	Mon Aug 24 16:43:56 2015 +0200
@@ -0,0 +1,30 @@
+#summary Warn admins about outgoing s2s connections that are refused due to invalid or untrusted certificates
+#labels Stage-Alpha
+
+= Introduction =
+
+Similar to mod_watchregistrations, this module warns admins when an s2s connection fails due for encryption or trust reasons.
+
+The certificate shows the SHA1 hash, so it can easily be used together with mod_s2s_auth_fingerprint.
+
+= Configuration =
+
+{{{
+modules_enabled = {
+	-- other modules --
+	"watchuntrusted",
+
+}
+
+untrusted_fail_watchers = { "admin@example.lit" }
+untrusted_fail_notification = "Establishing a secure connection from $from_host to $to_host failed. Certificate hash: $sha1. $errors"
+}}}
+
+|| *Option*                          || *Default* || *Description* ||
+|| untrusted_fail_watchers || All admins      || The users to send the message to ||
+|| untrusted_fail_notification         || "Establishing a secure connection from $from_host to $to_host failed. Certificate hash: $sha1. $errors"      || The message to send, $from_host, $to_host, $sha1 and $errors are replaced  ||
+
+
+= Compatibility =
+
+||trunk||Works||
\ No newline at end of file