s2s_require_encryption = true in the config, and just run: metronomectl reload ... or alternatively send a HUP signal to its process, after.
Marco. -------- Messaggio originale -------- Da: Vinilox <[email protected]> Data:19/05/2014 11:28 (GMT+01:00) A: MPP Operators Group <[email protected]> Oggetto: Re: [Operators] R: Re: May 19th - Permanent encrypted XMPP network and Open Discussion Day Ok ! Thank you ! So I just need to set s2s_required = true in metronome/prosody ? -- Vinilox Clé GPG : B6F475FD On 19 mai 2014 11:18:05 CEST, Kevin Smith <[email protected]> wrote: >On Mon, May 19, 2014 at 10:15 AM, Vinilox <[email protected]> wrote: >> I use a CaCert cert for my XMPP server vinilox.eu this means I have >to change for a "trusted" cert to be able to use s2s with other servers >? If I keep my CaCert cert I won't be able to communicate with >Jappix.com and jabber.org for example ? > >No, the point of the switch today was to move to requiring >unauthenticated TLS. I expect authenticated TLS is a jump that'll >happen later. > >(Individual services may already go the extra mile, of course, but >jabber.org doesn't). > >/K
