prosody-modules
e977174082ee
mod_disable_tls/README.md

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody-modules

File

mod_disable_tls/README.md @ 6193:e977174082ee

mod_invites_register_api: Use set_password() for password resets Previously the code relied on the (weird) behaviour of create_user(), which would update the password for a user account if it already existed. This has several issues, and we plan to deprecate this behaviour of create_user(). The larger issue is that this route does not trigger the user-password-changed event, which can be a security problem. For example, it did not disconnect existing user sessions (this occurs in mod_c2s in response to the event). Switching to set_password() is the right thing to do
author Matthew Wild <mwild1@gmail.com>
date Thu, 06 Feb 2025 10:24:30 +0000
parent 6003:fe081789f7b5
line wrap: on
line source

---
labels:
- 'Stage-Beta'
summary: Disable TLS on certain client ports
...

Introduction
============

This module can be used to prevent Prosody from offering TLS on client
ports that you specify. This can be useful to work around buggy clients
when transport security is not required.

Configuration
=============

Load the module, and set `disable_tls_ports` to a list of ports:

        disable_tls_ports = { 5322 }

Don't forget to add any extra ports to c2s\_ports, so that Prosody is
actually listening for connections!

Compatibility
=============

  ----- -------
  0.9   Works
  ----- -------