[Operators] Secure Communications Week

Peter Saint-Andre stpeter at stpeter.im
Fri Aug 15 08:59:06 CDT 2008


Tobias Klausmann wrote:
> Hi! 
> 
> On Thu, 14 Aug 2008, Peter Saint-Andre wrote:
>> What do you think?
> 
> Principally speaking, I'm all for it.
> 
>> - Optionally require SSL/TLS for server-to-server connections
> 
> This might be a bump since there are server implementations that
> only support self-signed certs (older jabberds) or are very hairy
> when it comes to Cert management (Openfire makes me very unhappy
> in this regard). 

How about TLS with self-signed certs + server dialback? At least that 
would give us channel encryption.

>> http://wiki.jabber.org/index.php/Secure_Communications_Week
> 
> It'd be nice if that page had (links to) howtos for S2S Cert
> configuration for the usual server implementations (jabberd1/2,
> ejabberd, openfire, are there more?). 

It's a wiki. People will add links. :)

> Also, it could mention
> cacert.org (which is my free cert provider of choice).

Sure.

Peter

-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 7338 bytes
Desc: S/MIME Cryptographic Signature
Url : http://mail.jabber.org/pipermail/operators/attachments/20080815/560a7772/attachment.bin 


More information about the Operators mailing list