blob: 9bd5ae29064f1280fd4da679359fb16a39298089 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
|
---
layout: default
title: Server TLS Certificates
permalink: /certificates/
---
<div class="section-header" id="features-section">
<center>
<span class="fa fa-certificate" style="font-size:100px;" aria-hidden="true"></span>
<h2>Servers TLS Certificates</h2>
</center>
</div>
<hr class="my-4">
<p style="max-width:800px;text-align:center;margin:0 auto;">One of the benefits of communicating via XMPP is the level of security you may implement on the connection to and from the server. This server uses <a href="https://en.wikipedia.org/wiki/Domain_Name_System_Security_Extensions">DNSSEC</a> and <a href="">TLS Certificate Pinning</a>, to secure its users from diffrent <a href="https://en.wikipedia.org/wiki/Man-in-the-middle_attack">MitM</a> attacks outside observers.</p>
<p style="max-width:800px;text-align:center;margin:0 auto;">As an added layer of security, a user may validate this servers TLS Certificates, below is the current fingerprints for each domain name you may use.</p>
<hr class="my-4">
<div id="cert-table">
<h2>{{ site.xmpp-url }}</h2>
<p id="date"><small>(expires: {{ site.fingerprint-expires }})</small></p>
<p>This is the primary certificate that your client will use during its XMPP connection.</p>
{% if site.fingerprint-sha1 %}
<div class="cert-title">
<b>SHA1 Fingerprint</b>
</div>
<div class="cert-content">
<pre>{{ site.fingerprint-sha1 }}</pre>
</div>
{% endif %}
{% if site.fingerprint-sha256 %}
<div class="cert-title">
<b>SHA256 Fingerprint</b>
</div>
<div class="cert-content">
<pre>{{ site.fingerprint-sha256 }}</pre>
</div>
{% endif %}
<hr class="my-4">
{% if site.xmpp-host %}
<h2>{{ site.xmpp-host }}</h2>
<p id="date"><small>(expires: {{ site.fingerprint-im-expires }})</small></p>
<p>This is the certificate and domain that you are currently using to view this webpage; it is used for most website services. This is also used during some XMPP connection attempts.</p>
{% if site.xmpp-host and site.fingerprint-im-sha1 %}
<div class="cert-title">
<b>SHA1 Fingerprint</b>
</div>
<div class="cert-content">
<pre>{{ site.fingerprint-im-sha1 }}</pre>
</div>
{% endif %}
{% if site.xmpp-host and site.fingerprint-im-sha256 %}
<div class="cert-title">
<b>SHA256 Fingerprint</b>
</div>
<div class="cert-content">
<pre>{{ site.fingerprint-im-sha256 }}</pre>
</div>
{% endif %}
<hr class="my-4">
{% endif %}
{% if site.xmpp-conference-url and site.xep-0045 == 1 %}
<h2>{{ site.xmpp-conference-url }}</h2>
<p id="date"><small>(expires: {{ site.fingerprint-conference-expires }})</small></p>
<p>The conference domain at {{ site.xmpp-conference-url }} is used for all <a href="https://xmpp.org/extensions/xep-0045.html">MUC</a> (conference services) within your client.</p>
{% if site.xmpp-conference-url and site.xep-0045 == 1 and site.fingerprint-conference-sha1 %}
<div class="cert-title">
<b>SHA1 Fingerprint</b>
</div>
<div class="cert-content">
<pre>{{ site.fingerprint-conference-sha1 }}</pre>
</div>
{% endif %}
{% if site.xmpp-conference-url and site.xep-0045 == 1 and site.fingerprint-conference-sha256 %}
<div class="cert-title">
<b>SHA256 Fingerprint</b>
</div>
<div class="cert-content">
<pre>{{ site.fingerprint-conference-sha256 }}</pre>
</div>
{% endif %}
<hr class="my-4">
{% endif %}
{% if site.xmpp-proxy-url and site.xep-0065 == 1 %}
<h2>{{ site.xmpp-proxy-url }}</h2>
<p id="date"><small>(expires: {{ site.fingerprint-proxy-expires }})</small></p>
{% if site.xmpp-proxy-url and site.xep-0065 == 1 and site.fingerprint-proxy-sha1 %}
<div class="cert-title">
<b>SHA1 Fingerprint</b>
</div>
<div class="cert-content">
<pre>{{ site.fingerprint-proxy-sha1 }}</pre>
</div>
{% endif %}
{% if site.xmpp-proxy-url and site.xep-0065 == 1 and site.fingerprint-proxy-sha256 %}
<div class="cert-title">
<b>SHA256 Fingerprint</b>
</div>
<div class="cert-content">
<pre>{{ site.fingerprint-proxy-sha256 }}</pre>
</div>
{% endif %}
<hr class="my-4">
{% endif %}
{% if site.xmpp-upload-url and site.xep-0363 == 1 %}
<h2>{{ site.xmpp-upload-url }}</h2>
<p id="date"><small>(expires: {{ site.fingerprint-upload-expires }})</small></p>
<p>The <b>{{ site.xmpp-upload-url }}</b> domain is used for the HTTP File Upload (<a href="https://xmpp.org/extensions/xep-0363.html">XEP-0363</a>), that allows a user to upload a file to the server, the server will then provide a URL link back to that file that anyone may view.</p>
{% if site.xmpp-upload-url and site.xep-0363 == 1 and site.fingerprint-upload-sha1 %}
<div class="cert-title">
<b>SHA1 Fingerprint</b>
</div>
<div class="cert-content">
<pre>{{ site.fingerprint-upload-sha1 }}</pre>
</div>
{% endif %}
{% if site.xmpp-upload-url and site.xep-0363 == 1 and site.fingerprint-upload-sha256 %}
<div class="cert-title">
<b>SHA256 Fingerprint</b>
</div>
<div class="cert-content">
<pre>{{ site.fingerprint-upload-sha256 }}</pre>
</div>
{% endif %}
{% endif %}
</div> <!-- Closing cert-table id div -->
<p style='text-align:right;'><a href="https://check.messaging.one/result.php?domain={{ site.xmpp-url }}&type=server"><img src="https://check.messaging.one/badge.php?domain={{ site.xmpp-url }}" alt="check.messaging.one server score" /></a></p>
|
