aboutsummaryrefslogtreecommitdiffstats
path: root/prosody.cfg.lua.dist
diff options
context:
space:
mode:
authorMatthew Wild <mwild1@gmail.com>2018-11-18 15:05:15 +0000
committerMatthew Wild <mwild1@gmail.com>2018-11-18 15:05:15 +0000
commit5469ccab078c022a321480514739acd218f488dc (patch)
tree23e9582473a5e6bd62b30f4b3370792814974df8 /prosody.cfg.lua.dist
parente2d3f5bef89c82755b8f19751570c209e2054d41 (diff)
downloadprosody-5469ccab078c022a321480514739acd218f488dc.tar.gz
prosody-5469ccab078c022a321480514739acd218f488dc.zip
prosody.cfg.lua.dist: Tidy up some comments
Diffstat (limited to 'prosody.cfg.lua.dist')
-rw-r--r--prosody.cfg.lua.dist12
1 files changed, 1 insertions, 11 deletions
diff --git a/prosody.cfg.lua.dist b/prosody.cfg.lua.dist
index f1329729..f7f7b731 100644
--- a/prosody.cfg.lua.dist
+++ b/prosody.cfg.lua.dist
@@ -102,16 +102,10 @@ c2s_require_encryption = true
-- Force servers to use encrypted connections? This option will
-- prevent servers from authenticating unless they are using encryption.
--- Note that this is different from authentication
s2s_require_encryption = true
-
-- Force certificate authentication for server-to-server connections?
--- This provides ideal security, but requires servers you communicate
--- with to support encryption AND present valid, trusted certificates.
--- NOTE: Your version of LuaSec must support certificate verification!
--- For more information see https://prosody.im/doc/s2s#security
s2s_secure_auth = false
@@ -122,17 +116,13 @@ s2s_secure_auth = false
--s2s_insecure_domains = { "insecure.example" }
--- Even if you leave s2s_secure_auth disabled, you can still require valid
+-- Even if you disable s2s_secure_auth, you can still require valid
-- certificates for some domains by specifying a list here.
--s2s_secure_domains = { "jabber.org" }
-- Select the authentication backend to use. The 'internal' providers
-- use Prosody's configured data storage to store the authentication data.
--- To allow Prosody to offer secure authentication mechanisms to clients, the
--- default provider stores passwords in plaintext. If you do not trust your
--- server please see https://prosody.im/doc/modules/mod_auth_internal_hashed
--- for information about using the hashed backend.
authentication = "internal_hashed"