Matthew Wild <mwild1@gmail.com> [Mon, 14 Feb 2022 15:51:13 +0000] rev 12339
prosody.cfg.lua.dist: TURN configuration improvements and example
Matthew Wild <mwild1@gmail.com> [Mon, 14 Feb 2022 15:49:43 +0000] rev 12338
prosody.cfg.lua.dist: Enable csi_simple by default
It was added here in 2018, and at that time probably a bit too new to be
enabled by default. Times change, and most people have this enabled now.
Matthew Wild <mwild1@gmail.com> [Thu, 10 Feb 2022 19:54:14 +0000] rev 12337
usermanager, mod_saslauth: Default to internal_hashed if no auth module specified
The default config was updated in this way long ago, but if no option was
present in the config, Prosody would load internal_plain.
This change can result in changes (for the better) for people using very old
configuration files lacking an 'authentication' setting.
Matthew Wild <mwild1@gmail.com> [Mon, 14 Feb 2022 15:58:08 +0000] rev 12336
prosody.cfg.lua.dist: Remove require_encryption options
Reasons:
- These now default to enabled when not specified since 38b5b05407be
- Practically all servers require encryption these days for c2s/s2s.
- Disabling encryption can be considered a special case that doesn't
need to be in the default config file.
Kim Alvefur <zash@zash.se> [Thu, 10 Feb 2022 17:15:55 +0100] rev 12335
core.certmanager: Turn soft dependency on LuaSec into a hard
The default network backend server_epoll already requires LuaSec so
Prosody won't even start without it, so we can get rid of these lines
here too.
Kim Alvefur <zash@zash.se> [Sat, 25 Dec 2021 16:23:40 +0100] rev 12334
various: Require encryption by default for real
These options have been specified (and enabled) in the default config file for
a long time. However if unspecified in the config, they were not enabled. Now
they are.
This may result in a change of behaviour for people using very old config
files that lack the require_encryption options. But that's what we want.
Matthew Wild <mwild1@gmail.com> [Thu, 10 Feb 2022 15:49:01 +0000] rev 12333
mod_invites_register: Default to require encryption
In line with the Prosody-wide default change for 0.12.
Matthew Wild <mwild1@gmail.com> [Thu, 10 Feb 2022 15:48:34 +0000] rev 12332
mod_legacyauth: Default to require encryption
Kim Alvefur <zash@zash.se> [Thu, 10 Feb 2022 18:35:39 +0100] rev 12331
prosody.cfg.lua.dist: Remove mod_http_files
Serving web pages outside of specialized modules seems like a rare use
case that doesn't warrant a spot in the default config file.
Many users seem to have it confused with mod_http_upload, so removing it
should help with that.
Kim Alvefur <zash@zash.se> [Thu, 10 Feb 2022 17:15:18 +0100] rev 12330
prosody.cfg.lua.dist: Move Dialback down
Mostly a source of security issues lately