[Security] S2S Leap of faith w/ SASL EXTERNAL

Stephen Paul Weber singpolyma at singpolyma.net
Fri Nov 19 09:22:13 CST 2010


On Wed, Nov 17, 2010 at 19:51, Kim Alvefur <zash at zash.se> wrote:
> Imagine a server with a self signed certificate.

Why is a production server using a self-signed certificate?  StartSSL
will give personal sites and some others a cert for free.  Others can
either get one pretty cheap, or we could convince the XMPP community
to support CACert.

-- 
Stephen Paul Weber, @singpolyma
Please see <http://singpolyma.net> for how I prefer to be contacted.
This message was sent from the GMail webmail interface. It's probably
not signed.  This is a problem.


More information about the Security mailing list