prosody
7e7484a4e821
core/hostmanager.lua
Software / code / prosody
Comparison
core/hostmanager.lua @ 2321:7e7484a4e821
Disable SSLv2 by default, it's known to be insecure.
| author | Paul Aurich <paul@darkrain42.org> |
|---|---|
| date | Fri, 04 Dec 2009 09:48:08 -0800 |
| parent | 1980:8fceabd84d74 |
| child | 2420:6ccd36a95a81 |
| child | 2877:1edeb8fe7d14 |
comparison
equal
deleted
inserted
replaced
| 2320:2ca7445b882a | 2321:7e7484a4e821 |
|---|---|
| 18 require "core.s2smanager"; | 18 require "core.s2smanager"; |
| 19 end | 19 end |
| 20 local incoming_s2s = _G.prosody.incoming_s2s; | 20 local incoming_s2s = _G.prosody.incoming_s2s; |
| 21 | 21 |
| 22 -- These are the defaults if not overridden in the config | 22 -- These are the defaults if not overridden in the config |
| 23 local default_ssl_ctx = { mode = "client", protocol = "sslv23", capath = "/etc/ssl/certs", verify = "none"; }; | 23 local default_ssl_ctx = { mode = "client", protocol = "sslv23", capath = "/etc/ssl/certs", verify = "none", options = "no_sslv2"; }; |
| 24 local default_ssl_ctx_in = { mode = "server", protocol = "sslv23", capath = "/etc/ssl/certs", verify = "none"; }; | 24 local default_ssl_ctx_in = { mode = "server", protocol = "sslv23", capath = "/etc/ssl/certs", verify = "none", options = "no_sslv2"; }; |
| 25 | 25 |
| 26 local log = require "util.logger".init("hostmanager"); | 26 local log = require "util.logger".init("hostmanager"); |
| 27 | 27 |
| 28 local pairs, setmetatable = pairs, setmetatable; | 28 local pairs, setmetatable = pairs, setmetatable; |
| 29 | 29 |
