Hi all,
linuxlovers.at and 0nl1ne.at skipped the last test day, but now we're
enforcing TLS too :)
Zitat von Simon Tennant <[email protected]>:
One problem I have noticed:
- domains that use CACert certificates are problematic.
Probably due to cacert being dropped from the trust chain. The site in
question went to a different registrar and everything works now.
The problem seems to be the combination of: on one side new/2014 CaCert
certificate and on the other side a server, which can't read the new
certificates signed with SHA-512.
Thats why 0nl1ne.at uses now a self-signed certificate, see for example
http://mail.jabber.org/pipermail/operators/2014-April/002272.html
On 18 May 2014 21:13, Ludovic BOCQUET <[email protected]> wrote:
Dear all,
In 2 hours from Paris, it is the permanent encrypted XMPP network switch
day and the Open Discussion Day (since 2006).
Do not forget to force encryption for S2S and C2S for have all encrypted
connections, after this the XMPP network will be more secure.
More informations:
- http://opendiscussionday.org/
- http://stpeter.im/journal/1496.html
- https://github.com/stpeter/manifesto/blob/master/manifesto.txt
Thanks for the reminder!
--
Mit freundlichen Grüßen / with best regards,
Nikolaus Polak - http://nikolauspolak.info
