Difference between revisions of "Securing XMPP"

Jump to navigation Jump to search
m (Change ejabberd URLs to use HTTPS.)
(Use YAML syntax for the ejabberd configuration file snippet.)
Line 19: Line 19:


=== ejabberd ===
=== ejabberd ===
Configure ejabberd.conf
Make sure that your ''ejabberd.yml'' contains the [http://www.process-one.net/docs/ejabberd/guide_en.html#listened-options following settings].
% Ordinary client-2-server service
 
  [{5222, ejabberd_c2s, [{access, c2s},
* For client-2-server connections:
starttls_required, {certfile, "/etc/ssl/certs/ejabberd.pem"},
  listen:
{shaper, c2s_shaper}]},
  -
% Use STARTTLS+Dialback for S2S connections
    port: 5222
  {s2s_use_starttls, required}.
    module: ejabberd_c2s
  {s2s_certfile, "/etc/ejabberd/ejabberd.pem"}.
    starttls_required: true
    certfile: "/etc/ejabberd/certificate.pem"
 
* For server-2-server Connections:
  s2s_use_starttls: required
  s2s_certfile: "/etc/ejabberd/certificate.pem"


Further help:
Further help:
Retrieved from "https://wiki.xmpp.org/web/Securing_XMPP"