Difference between revisions of "Securing XMPP"

Jump to navigation Jump to search
173 bytes added ,  12:48, 11 January 2018
m
(→‎Step1: Get a server certificate: Remove CA promotion.)
Line 17: Line 17:
==== ejabberd ====
==== ejabberd ====
Make sure that your ''ejabberd.yml'' contains the [http://docs.ejabberd.im/admin/guide/configuration/#listening-ports following settings].
Make sure that your ''ejabberd.yml'' contains the [http://docs.ejabberd.im/admin/guide/configuration/#listening-ports following settings].
* For ejabberd >= 17.12 list all available PEM files in this top-level option
certfiles:
  - "/etc/ejabberd/*.pem"


* For client-to-server connections:
* For client-to-server connections:
Line 24: Line 28:
     module: ejabberd_c2s
     module: ejabberd_c2s
     starttls_required: true
     starttls_required: true
     certfile: "/etc/ejabberd/certificate.pem"
     # For ejabberd < 17.12
    # certfile: "/etc/ejabberd/certificate.pem"


* For server-to-server connections:
* For server-to-server connections:
  s2s_use_starttls: required
  s2s_use_starttls: required
  s2s_certfile: "/etc/ejabberd/certificate.pem"
  # For ejabberd < 17.12
# s2s_certfile: "/etc/ejabberd/certificate.pem"


Further help:
Further help:
2

edits

Navigation menu