free
/
freedombone
Volgen 1
Ster 0
Vork 0
Code Kwesties 0 Pull-aanvragen 0 Publicaties 0 Wiki Activiteit
Bladeren bron

Protocol specification for prosody 0.10+

Bob Mottram 8 jaren geleden
bovenliggende
31671f6194
commit
29cac8fc6a
1 gewijzigde bestanden met toevoegingen van 5 en 5 verwijderingen
Gecombineerde weergave Toon Diff Stats
  1. 5
    5
      src/freedombone-app-xmpp

+ 5
- 5
src/freedombone-app-xmpp Bestand weergeven

675 
     echo "    key = \"/etc/ssl/private/${DEFAULT_DOMAIN_NAME}.key\";" >> /etc/prosody/prosody.cfg.lua
 675 
     echo "    key = \"/etc/ssl/private/${DEFAULT_DOMAIN_NAME}.key\";" >> /etc/prosody/prosody.cfg.lua
676 
     echo "    curve = $XMPP_ECC_CURVE;" >> /etc/prosody/prosody.cfg.lua
 676 
     echo "    curve = $XMPP_ECC_CURVE;" >> /etc/prosody/prosody.cfg.lua
677 
     echo "    ciphers = $XMPP_CIPHERS;" >> /etc/prosody/prosody.cfg.lua
 677 
     echo "    ciphers = $XMPP_CIPHERS;" >> /etc/prosody/prosody.cfg.lua
678 
-    echo '    options = {"no_sslv2", "no_sslv3" };' >> /etc/prosody/prosody.cfg.lua
678 
+    echo '    options = { "tlsv1+" };' >> /etc/prosody/prosody.cfg.lua
679 
     echo "    dhparam = \"/etc/ssl/certs/${DEFAULT_DOMAIN_NAME}.dhparam\";" >> /etc/prosody/prosody.cfg.lua
 679 
     echo "    dhparam = \"/etc/ssl/certs/${DEFAULT_DOMAIN_NAME}.dhparam\";" >> /etc/prosody/prosody.cfg.lua
680 
     echo "}" >> /etc/prosody/prosody.cfg.lua
 680 
     echo "}" >> /etc/prosody/prosody.cfg.lua
681 
     echo '' >> /etc/prosody/prosody.cfg.lua
 681 
     echo '' >> /etc/prosody/prosody.cfg.lua
689 
     echo "    curve = $XMPP_ECC_CURVE;" >> /etc/prosody/prosody.cfg.lua
 689 
     echo "    curve = $XMPP_ECC_CURVE;" >> /etc/prosody/prosody.cfg.lua
690 
     echo '    depth = "1";' >> /etc/prosody/prosody.cfg.lua
 690 
     echo '    depth = "1";' >> /etc/prosody/prosody.cfg.lua
691 
     echo "    ciphers = $XMPP_CIPHERS;" >> /etc/prosody/prosody.cfg.lua
 691 
     echo "    ciphers = $XMPP_CIPHERS;" >> /etc/prosody/prosody.cfg.lua
692 
-    echo '    options = {"no_sslv2", "no_sslv3" };' >> /etc/prosody/prosody.cfg.lua
692 
+    echo '    options = { "tlsv1+" };' >> /etc/prosody/prosody.cfg.lua
693 
     echo "    dhparam = \"/etc/ssl/certs/${DEFAULT_DOMAIN_NAME}.dhparam\";" >> /etc/prosody/prosody.cfg.lua
 693 
     echo "    dhparam = \"/etc/ssl/certs/${DEFAULT_DOMAIN_NAME}.dhparam\";" >> /etc/prosody/prosody.cfg.lua
694 
     echo '}' >> /etc/prosody/prosody.cfg.lua
 694 
     echo '}' >> /etc/prosody/prosody.cfg.lua
695 
     echo '' >> /etc/prosody/prosody.cfg.lua
 695 
     echo '' >> /etc/prosody/prosody.cfg.lua
724 
     echo "        curve = $XMPP_ECC_CURVE;" >> /etc/prosody/prosody.cfg.lua
 724 
     echo "        curve = $XMPP_ECC_CURVE;" >> /etc/prosody/prosody.cfg.lua
725 
     echo '        depth = "1";' >> /etc/prosody/prosody.cfg.lua
 725 
     echo '        depth = "1";' >> /etc/prosody/prosody.cfg.lua
726 
     echo "        ciphers = $XMPP_CIPHERS;" >> /etc/prosody/prosody.cfg.lua
 726 
     echo "        ciphers = $XMPP_CIPHERS;" >> /etc/prosody/prosody.cfg.lua
727 
-    echo '        options = {"no_sslv2", "no_sslv3" };' >> /etc/prosody/prosody.cfg.lua
727 
+    echo '        options = { "tlsv1+" };' >> /etc/prosody/prosody.cfg.lua
728 
     echo "        dhparam = \"/etc/prosody/certs/${DEFAULT_DOMAIN_NAME}.dhparam\";" >> /etc/prosody/prosody.cfg.lua
 728 
     echo "        dhparam = \"/etc/prosody/certs/${DEFAULT_DOMAIN_NAME}.dhparam\";" >> /etc/prosody/prosody.cfg.lua
729 
     echo '    }' >> /etc/prosody/prosody.cfg.lua
 729 
     echo '    }' >> /etc/prosody/prosody.cfg.lua
730 
     echo '' >> /etc/prosody/prosody.cfg.lua
 730 
     echo '' >> /etc/prosody/prosody.cfg.lua
890 
             sed -i '/certificate =/a\        dhparam = "/etc/prosody/certs/xmpp.dhparam";' /etc/prosody/conf.avail/xmpp.cfg.lua
 890 
             sed -i '/certificate =/a\        dhparam = "/etc/prosody/certs/xmpp.dhparam";' /etc/prosody/conf.avail/xmpp.cfg.lua
891 
         fi
 891 
         fi
892 
     fi
 892 
     fi
893 
-    if ! grep -q 'options = {"no_sslv2", "no_sslv3" }' /etc/prosody/conf.avail/xmpp.cfg.lua; then
894 
-        sed -i '/certificate =/a\        options = {"no_sslv2", "no_sslv3" };' /etc/prosody/conf.avail/xmpp.cfg.lua
893 
+    if ! grep -q 'options = { "tlsv1+" }' /etc/prosody/conf.avail/xmpp.cfg.lua; then
894 
+        sed -i '/certificate =/a\        options = { "tlsv1+" };' /etc/prosody/conf.avail/xmpp.cfg.lua
895 
     fi
 895 
     fi
896 
     if ! grep -q 'ciphers =' /etc/prosody/conf.avail/xmpp.cfg.lua; then
 896 
     if ! grep -q 'ciphers =' /etc/prosody/conf.avail/xmpp.cfg.lua; then
897 
         sed -i "/certificate =/a\        ciphers = $XMPP_CIPHERS;" /etc/prosody/conf.avail/xmpp.cfg.lua
 897 
         sed -i "/certificate =/a\        ciphers = $XMPP_CIPHERS;" /etc/prosody/conf.avail/xmpp.cfg.lua