certificates.html


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129

---
layout: default
title: Server TLS Certificates
permalink: /certificates/
---

<div class="section-header" id="features-section">
    <center>
       <span class="fa fa-certificate" style="font-size:100px;" aria-hidden="true"></span>
       <h2>Servers TLS Certificates</h2>
    </center>
</div>

<hr class="my-4">

<p style="max-width:800px;text-align:center;margin:0 auto;">One of the benefits of communicating via XMPP is the level of security involved.  This server uses <a href="">DNSSEC</a> and TLS <a href="">Certificate Pinning</a>, to secure its users identity and privacy from outside observers.</p>

<p style="max-width:800px;text-align:center;margin:0 auto;">As an added layer of security, a user can validate the servers they are connecting to, below is the current fingerprints for each domain name.</p>

<hr class="my-4">

<div id="cert-table">
<h2>{{ site.xmpp-url }}</h2>
<p id="date"><small>(expires: {{ site.fingerprint-expires }})</small></p>
{% if site.fingerprint-sha1 %}
  <div class="cert-title">
    <b>SHA1 Fingerprint</b>
  </div>
  <div class="cert-content">
    <pre>{{ site.fingerprint-sha1 }}</pre>
  </div>
{% endif %}
{% if site.fingerprint-sha256 %}
  <div class="cert-title">
    <b>SHA256 Fingerprint</b>
  </div>
  <div class="cert-content">
    <pre>{{ site.fingerprint-sha256 }}</pre>
  </div>
{% endif %}
  <hr class="my-4">
{% if site.xmpp-host %}
<h2>{{ site.xmpp-host }}</h2>
<p id="date"><small>(expires: {{ site.fingerprint-im-expires }})</small></p>
{% if site.xmpp-host and site.fingerprint-im-sha1 %}
  <div class="cert-title">
    <b>SHA1 Fingerprint</b>
  </div>
  <div class="cert-content">
    <pre>{{ site.fingerprint-im-sha1 }}</pre>
  </div>
{% endif %}
{% if site.xmpp-host and site.fingerprint-im-sha256 %}
  <div class="cert-title">
    <b>SHA256 Fingerprint</b>
  </div>
  <div class="cert-content">
    <pre>{{ site.fingerprint-im-sha256 }}</pre>
  </div>
{% endif %}
  <hr class="my-4">
{% endif %}
{% if site.xmpp-conference-url and site.xep-0045 == 1 %}
<h2>{{ site.xmpp-conference-url }}</h2>
<p id="date"><small>(expires: {{ site.fingerprint-conference-expires }})</small></p>
{% if site.xmpp-conference-url and site.xep-0045 == 1 and site.fingerprint-conference-sha1 %}
  <div class="cert-title">
    <b>SHA1 Fingerprint</b>
  </div>
  <div class="cert-content">
    <pre>{{ site.fingerprint-conference-sha1 }}</pre>
  </div>
{% endif %}
{% if site.xmpp-conference-url and site.xep-0045 == 1 and site.fingerprint-conference-sha256 %}
  <div class="cert-title">
    <b>SHA256 Fingerprint</b>
  </div>
  <div class="cert-content">
    <pre>{{ site.fingerprint-conference-sha256 }}</pre>
  </div>
{% endif %}
  <hr class="my-4">
{% endif %}
{% if site.xmpp-proxy-url and site.xep-0065 == 1 %}
<h2>{{ site.xmpp-proxy-url }}</h2>
<p id="date"><small>(expires: {{ site.fingerprint-proxy-expires }})</small></p>
{% if site.xmpp-proxy-url and site.xep-0065 == 1 and site.fingerprint-proxy-sha1 %}
  <div class="cert-title">
    <b>SHA1 Fingerprint</b>
  </div>
  <div class="cert-content">
    <pre>{{ site.fingerprint-proxy-sha1 }}</pre>
  </div>
{% endif %}
{% if site.xmpp-proxy-url and site.xep-0065 == 1 and site.fingerprint-proxy-sha256 %}
  <div class="cert-title">
    <b>SHA256 Fingerprint</b>
  </div>
  <div class="cert-content">
    <pre>{{ site.fingerprint-proxy-sha256 }}</pre>
  </div>
{% endif %}
  <hr class="my-4">
{% endif %}
{% if site.xmpp-upload-url and site.xep-0363 == 1 %}
<h2>{{ site.xmpp-upload-url }}</h2>
<p id="date"><small>(expires: {{ site.fingerprint-upload-expires }})</small></p>
<p>The <b>{{ site.xmpp-upload-url }}</b> domain is used for the HTTP File Upload (<a href="https://xmpp.org/extensions/xep-0363.html">XEP-0363</a>), that allows a user to upload a file to the server, the server will then provide a URL link back to that file that anyone may view.</p>
{% if site.xmpp-upload-url and site.xep-0363 == 1 and site.fingerprint-upload-sha1 %}
  <div class="cert-title">
    <b>SHA1 Fingerprint</b>
  </div>
  <div class="cert-content">
    <pre>{{ site.fingerprint-upload-sha1 }}</pre>
  </div>
{% endif %}
{% if site.xmpp-upload-url and site.xep-0363 == 1 and site.fingerprint-upload-sha256 %}
  <div class="cert-title">
    <b>SHA256 Fingerprint</b>
  </div>
  <div class="cert-content">
    <pre>{{ site.fingerprint-upload-sha256 }}</pre>
  </div>
{% endif %}
{% endif %}
</div> <!-- Closing cert-table id div -->

<p style='text-align:right;'><a href="https://check.messaging.one/result.php?domain={{ site.xmpp-url }}&amp;type=server"><img src="https://check.messaging.one/badge.php?domain={{ site.xmpp-url }}" alt="check.messaging.one server score" /></a></p>