aboutsummaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
authorMatthew Wild <mwild1@gmail.com>2012-05-12 00:33:04 +0100
committerMatthew Wild <mwild1@gmail.com>2012-05-12 00:33:04 +0100
commit7aac87fba842b093bbb339dff9f8c6f305e1faa8 (patch)
tree30cd4e1f7530333116c1e5376eaac22235c079e3
parent8a195243841d5101890e3fd0cc9ad48b46fa0e7b (diff)
downloadprosody-7aac87fba842b093bbb339dff9f8c6f305e1faa8.tar.gz
prosody-7aac87fba842b093bbb339dff9f8c6f305e1faa8.zip
stanza_router: Remove FIXME comment and close stream with not-authorized for s2s stanzas from unauthed domains
-rw-r--r--core/stanza_router.lua3
1 files changed, 2 insertions, 1 deletions
diff --git a/core/stanza_router.lua b/core/stanza_router.lua
index cea38166..4c241c27 100644
--- a/core/stanza_router.lua
+++ b/core/stanza_router.lua
@@ -109,7 +109,8 @@ function core_process_stanza(origin, stanza)
local host_status = origin.hosts[from_host];
if not host_status or not host_status.authed then -- remote server trying to impersonate some other server?
log("warn", "Received a stanza claiming to be from %s, over a stream authed for %s!", from_host, origin.from_host);
- return; -- FIXME what should we do here? does this work with subdomains?
+ origin:close("not-authorized");
+ return;
elseif not hosts[to_host] then
log("warn", "Remote server %s sent us a stanza for %s, closing stream", origin.from_host, to_host);
origin:close("host-unknown");