Re: self signed cert

AM To: jabberd2@lists.xiaoka.com Reply To: jabberd2@lists.xiaoka.com Subject: Re: self signed cert W dniu 03.05.2016, wto o godzinie 16∶51 -0700, użytkownik li...@lazygranch.com napisał: > I know when I used a web hosting company to handle my email, I would > yearly have to blindly trust t

Re: self signed cert

W dniu 03.05.2016, wto o godzinie 16∶51 -0700, użytkownik li...@lazygranch.com napisał: > I know when I used a web hosting company to handle my email, I would > yearly have to blindly trust the new cert. And this exact behavior I'd like to erradicate. Most users do not bother to check whether the

Re: self signed cert

to feel free to tell me if I got any part of this wrong.   Original Message   From: Tomasz Sterna Sent: Tuesday, May 3, 2016 4:30 PM To: jabberd2@lists.xiaoka.com Reply To: jabberd2@lists.xiaoka.com Subject: Re: self signed cert W dniu 03.05.2016, wto o godzinie 12∶34 -0700, użytkownik li...@lazygra

Re: self signed cert

W dniu 03.05.2016, wto o godzinie 12∶34 -0700, użytkownik li...@lazygranch.com napisał: > I'm not following you here. You still have encryption with a self > signed cert, but no trust. But if you can't trust yourself, who else > can you trust?  If you have a reliable way of distributing your certi

Re: self signed cert

From: Tomasz Sterna Sent: Tuesday, May 3, 2016 11:12 AM To: jabberd2@lists.xiaoka.com Reply To: jabberd2@lists.xiaoka.com Cc: Jabber/XMPP software development list Subject: Re: self signed cert W dniu 03.05.2016, wto o godzinie 09∶40 -0700, użytkownik li...@lazygranch.com napisał: > I suspect you

Re: self signed cert

W dniu 03.05.2016, wto o godzinie 09∶40 -0700, użytkownik li...@lazygranch.com napisał: > I suspect you wouldn't want s2s to use a self signed cert, so > allowing two level of verification (c2s and s2s) sounds complex. You > fix one thing in software and you break something else. So, why would you

Re: self signed cert

t are confusing.   Original Message   From: Tomasz Sterna Sent: Tuesday, May 3, 2016 9:17 AM To: jabberd2@lists.xiaoka.com Reply To: jabberd2@lists.xiaoka.com Cc: Jabber/XMPP software development list Subject: Re: self signed cert W dniu 03.05.2016, wto o godzinie 02∶12 -0700, użytkownik li...@lazygra

Re: self signed cert

W dniu 03.05.2016, wto o godzinie 02∶12 -0700, użytkownik li...@lazygranch.com napisał: > jabberd2 version(2.3.6) > I followed these instructions: > https://github.com/jabberd2/jabberd2/wiki/InstallGuide-OpenSSLConfigu > ration > [...] > SM  : sx (ssl.c:405) secure channel not established, handshak

Re: self signed cert

W dniu 03.05.2016, wto o godzinie 06∶22 -0700, użytkownik li...@lazygranch.com napisał: > So the documentation on generating a self signed cert  is not > correct. It is (for the lack of better word) ancient. Unfortunately, there is no one willing to work on improving it. > Isn't the key generate

Re: self signed cert

t: Re: self signed cert W dniu 03.05.2016, wto o godzinie 02∶12 -0700, użytkownik li...@lazygranch.com napisał: > How exactly do I specify the cachain for a self signed cert. You need to put your root CA used to sign the cert to the CA certs store specified in 'cachain' option. Th

Re: self signed cert

W dniu 03.05.2016, wto o godzinie 02∶12 -0700, użytkownik li...@lazygranch.com napisał: > How exactly do I specify the cachain for a self signed cert. You need to put your root CA used to sign the cert to the CA certs store specified in 'cachain' option. This is to encourage deployments to stop u