Table of Contents

mod_tls

Enables SSL/TLS encryption on connected streams.

Details

mod_tls implements RFC3921bis. See Advanced SSL/TLS configuration for more information on configuring the certificates you wish Prosody to use.

Usage

    modules_enabled = {
        -- Other modules
        "tls"; -- Enable mod_tls
    }

Configuration

Option Default Notes
c2s_require_encryption false Whether to force all client-to-server connections to be encrypted or not
require_encryption false DEPRECATED - please use c2s_require_encryption
s2s_require_encryption false Whether to force all server-to-server connections to be encrypted or not

These options will cause Prosody to deny connections that are not encrypted. Note that some servers do not support s2s encryption or have it disabled, including gmail.com and Google Apps domains.

Example

    modules_enabled = {
        -- Other modules
        "tls"; -- Enable mod_tls
    }
 
    c2s_require_encryption = true
    s2s_require_encryption = true
 
doc/modules/mod_tls.txt · Last modified: 2011/01/19 00:41 by Waqas Hussain