Log

mod_s2s_auth_dane/mod_s2s_auth_dane.lua @ 1348:6191613959dc

description author age
mod_s2s_auth_dane: Make supported DANE usages configurable, default to DANE-EE Kim Alvefur Fri, 14 Mar 2014 14:18:18 +0100
mod_s2s_auth_dane: Simplify, but diverge from DANE-SRV draft. Will now look for _xmpp-server.example.com IN TLSA for both directions Kim Alvefur Fri, 14 Mar 2014 14:15:56 +0100
mod_s2s_auth_dane: Only invalidate trust if we found any supported DANE records Kim Alvefur Tue, 11 Mar 2014 21:13:40 +0100
mod_s2s_auth_dane: Improve handling of bogus data Kim Alvefur Sun, 09 Mar 2014 23:17:17 +0100
mod_s2s_auth_dane: Only do TLSA lookup if it hasn't been attempted already Kim Alvefur Sun, 09 Mar 2014 23:08:41 +0100
mod_s2s_auth_dane: Fix inverted nil check Kim Alvefur Sun, 09 Mar 2014 14:09:24 +0100
mod_s2s_auth_dane: Do DANE lookups on outgoing stream features Kim Alvefur Sun, 09 Mar 2014 13:44:29 +0100
mod_s2s_auth_dane: Improve logging Kim Alvefur Sun, 09 Mar 2014 13:43:27 +0100
mod_s2s_auth_dane: More comment changes Kim Alvefur Sun, 09 Mar 2014 13:42:36 +0100
mod_s2s_auth_dane: Implement experimental method for doing DANE with client certificates on s2sin Kim Alvefur Sat, 08 Mar 2014 00:00:26 +0100
mod_s2s_auth_dane: Add some comments Kim Alvefur Fri, 07 Mar 2014 23:30:34 +0100
mod_s2s_auth_dane: Don't allow unencrypted connections if TLSA exists Kim Alvefur Wed, 05 Mar 2014 17:44:27 +0100
mod_s2s_auth_dane: Verify that the pubkey method exists when the SPKI selector is used Kim Alvefur Wed, 05 Mar 2014 17:42:15 +0100
mod_s2s_auth_dane: Delay s2sout state machine until we get TLSA reply Kim Alvefur Wed, 05 Mar 2014 17:40:44 +0100