summaryrefslogtreecommitdiff
path: root/ejabberd/defs.yml
blob: 8c7a4f67e25fd6764506b63e805c880bb7f591dc (plain) 
    

  1. # https://feeding.cloud.geek.nz/posts/running-your-own-xmpp-server-debian-ubuntu/
    2. 

  2. 

  3. # The default ciphers-setting is found here:
    4. 

  4. #    https://github.com/processone/tls/blob/master/c_src/p1_tls_drv.c
    5. 

  5. # We use the default and exclude a few additional ciphers classified as weak
    6. 

  6. # by xmpp.net.
    7. 

  7. define_macro:
    8. 

  8.   'TLS_OPTIONS':
    9. 

  9.     - "no_sslv2"
    10. 

  10.     - "no_sslv3"
    11. 

  11.     - "no_tlsv1"
    12. 

  12.     - "no_tlsv1_1"
    13. 

  13.     - "cipher_server_preference"
    14. 

  14.   'TLS_CIPHERS': "ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256"
    15. 

  15.   CERT_PATH: "/etc/ejabberd/ejabberd.pem"
    16.
generated by cgit v1.2.3 (git 2.39.1) at 2024-05-19 10:44:58 +0000