[jdev] Re: TLS and self-signed certs
Peter Saint-Andre
stpeter at jabber.org
Fri Nov 12 12:30:40 CST 2004
In article <cn1k86$8cr$1 at sea.gmane.org>,
Stephen Marquard <scm at marquard.net> wrote:
> STARTTLS + Dialback has now been implemented in both jabberd1.4 (in CVS)
> and jabberd2 (a patch for s2s), so I think STARTTLS + Dialback should be
> encouraged as the basic minimum for s2s traffic, and when there's
> agreement on (1) or (2), server administrators could choose to set their
> own policies about interconnection (e.g. will only establish s2s
> connections with servers with CA-signed certs).
Yes, that seems reasonable. And it seems that we need to document more
clearly how to do this.
/psa
More information about the JDev
mailing list