prosody
4f22615c8361
certs/openssl.cnf

Find changesets by keywords by author, files, the commit message, revision number or hash, or revset expression.

Software / code / prosody

Comparison

certs/openssl.cnf @ 3701:4f22615c8361

certs: Add a default OpenSSL configuration file, and a Makefile.
author Kim Alvefur <zash@zash.se>
date Fri, 03 Dec 2010 16:40:42 +0100
child 3704:320738c67100
comparison
equal deleted inserted replaced
3696:a96f275c42b5 3701:4f22615c8361
1 oid_section = new_oids
2
3 [ new_oids ]
4
5 # RFC 3920 section 5.1.1 defines this OID
6 xmppAddr = 1.3.6.1.5.5.7.8.5
7
8 # RFC 4985 defines this OID
9 SRVName = 1.3.6.1.5.5.7.8.7
10
11 [ req ]
12
13 default_bits = 4096
14 default_keyfile = example.com.key
15 distinguished_name = distinguished_name
16 req_extensions = v3_extensions
17 x509_extensions = v3_extensions
18
19 # ask about the DN?
20 prompt = no
21
22 [ distinguished_name ]
23
24 commonName = example.com
25 countryName = UK
26 localityName = The Internet
27 organizationName = Your Organisation
28 organizationalUnitName = XMPP Department
29 emailAddress = xmpp@example.com
30
31 [ v3_extensions ]
32
33 # for certificate requests (req_extensions)
34 # and self-signed certificates (x509_extensions)
35
36 basicConstraints = CA:FALSE
37 keyUsage = digitalSignature,keyEncipherment
38 extendedKeyUsage = serverAuth,clientAuth
39 subjectAltName = @subject_alternative_name
40
41 [ subject_alternative_name ]
42
43 # See http://tools.ietf.org/html/draft-ietf-xmpp-3920bis#section-13.7.1.2 for more info.
44
45 DNS.0 = example.com
46 otherName.0 = xmppAddr;UTF8:example.com
47 otherName.1 = SRVName;IA5STRING:_xmpp-client.example.com
48 otherName.2 = SRVName;IA5STRING:_xmpp-server.example.com
49
50 DNS.1 = conference.example.com
51 otherName.3 = xmppAddr;UTF8:conference.example.com
52 otherName.4 = SRVName;IA5STRING:_xmpp-server.conference.example.com