mod_s2s_never_encrypt_blacklist: add option to check for the dull s2s session ip (OpenFire bork bork).
-- Filter out servers which gets choppy and buggy when it comes to starttls.
local bad_servers = module:get_option_set("tls_s2s_blacklist");
local bad_servers_ip = module:get_option_set("tls_s2s_blacklist_ip");
local function disable_tls_for_baddies_in(event)
if bad_servers:contains(event.origin.to_host) or bad_servers_ip:contains(event.origin.conn:ip())
then event.origin.conn.starttls = nil; end
end
local function disable_tls_for_baddies_out(event)
if bad_servers:contains(event.origin.from_host) or bad_servers_ip:contains(event.origin.conn:ip())
then event.origin.conn.starttls = nil; end
end
module:hook("s2s-stream-features", disable_tls_for_baddies_out, 10)
module:hook("stanza/http://etherx.jabber.org/streams:features", disable_tls_for_baddies_in, 510)