Enable TLS by default (and require it for c2s)
This commit is contained in:
Holger Weiss
parent
8ad6afd652
commit
26b9d25f32
|
|
@ -46,12 +46,13 @@ listen:
|
||||||
max_stanza_size: 65536
|
max_stanza_size: 65536
|
||||||
shaper: c2s_shaper
|
shaper: c2s_shaper
|
||||||
access: c2s
|
access: c2s
|
||||||
|
starttls_required: true
|
||||||
-
|
-
|
||||||
port: 5269
|
port: 5269
|
||||||
ip: "::"
|
ip: "::"
|
||||||
module: ejabberd_s2s_in
|
module: ejabberd_s2s_in
|
||||||
-
|
-
|
||||||
port: 5280
|
port: 5443
|
||||||
ip: "::"
|
ip: "::"
|
||||||
module: ejabberd_http
|
module: ejabberd_http
|
||||||
request_handlers:
|
request_handlers:
|
||||||
|
|
@ -61,6 +62,9 @@ listen:
|
||||||
"/ws": ejabberd_http_ws
|
"/ws": ejabberd_http_ws
|
||||||
web_admin: true
|
web_admin: true
|
||||||
captcha: true
|
captcha: true
|
||||||
|
tls: true
|
||||||
|
|
||||||
|
s2s_use_starttls: optional
|
||||||
|
|
||||||
acl:
|
acl:
|
||||||
local:
|
local:
|
||||||
|
|
@ -149,7 +153,7 @@ modules:
|
||||||
mod_fail2ban: {}
|
mod_fail2ban: {}
|
||||||
mod_http_api: {}
|
mod_http_api: {}
|
||||||
mod_http_upload:
|
mod_http_upload:
|
||||||
put_url: "http://@HOST@:5280/upload"
|
put_url: "https://@HOST@:5443/upload"
|
||||||
mod_last: {}
|
mod_last: {}
|
||||||
mod_mam:
|
mod_mam:
|
||||||
## Mnesia is limited to 2GB, better to use an SQL backend
|
## Mnesia is limited to 2GB, better to use an SQL backend
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue