--- layout: default title: Server TLS Certificates permalink: /certificates/ ---
One of the benefits of communicating via XMPP is the level of security you may implement on the connection to and from the server. This server uses DNSSEC and TLS Certificate Pinning, to secure its users from diffrent MitM attacks outside observers.
As an added layer of security, a user may validate this servers TLS Certificates, below is the current fingerprints for each domain name you may use.
(expires: {{ site.fingerprint-expires }})
This is the primary certificate that your client will use during its XMPP connection.
{% if site.fingerprint-sha1 %}{{ site.fingerprint-sha1 }}
{{ site.fingerprint-sha256 }}
(expires: {{ site.fingerprint-im-expires }})
This is the certificate and domain that you are currently using to view this webpage; it is used for most website services. This is also used during some XMPP connection attempts.
{% if site.xmpp-host and site.fingerprint-im-sha1 %}{{ site.fingerprint-im-sha1 }}
{{ site.fingerprint-im-sha256 }}
(expires: {{ site.fingerprint-conference-expires }})
The conference domain at {{ site.xmpp-conference-url }} is used for all MUC (conference services) within your client.
{% if site.xmpp-conference-url and site.xep-0045 == 1 and site.fingerprint-conference-sha1 %}{{ site.fingerprint-conference-sha1 }}
{{ site.fingerprint-conference-sha256 }}
(expires: {{ site.fingerprint-proxy-expires }})
The Socks 5 Proxy (XEP-0065) is the old method of transfering files between clients. Modern clients use the "HTTP File Upload" service, on this service currently found at {{ site.xmpp-upload-url }}. {% if site.xmpp-proxy-url and site.xep-0065 == 1 and site.fingerprint-proxy-sha1 %}
{{ site.fingerprint-proxy-sha1 }}
{{ site.fingerprint-proxy-sha256 }}
(expires: {{ site.fingerprint-upload-expires }})
The {{ site.xmpp-upload-url }} domain is used for the HTTP File Upload (XEP-0363), that allows a user to upload a file to the server, the server will then provide a URL link back to that file that anyone may view.
{% if site.xmpp-upload-url and site.xep-0363 == 1 and site.fingerprint-upload-sha1 %}{{ site.fingerprint-upload-sha1 }}
{{ site.fingerprint-upload-sha256 }}