This is achieved by using AES, DHM and SHA-1. OTR enhances the security between two users even more. Check Create this new account on the server > add and register your account. Change the protocol to XMPP and fill in your user name, domain and password. You can add new accounts by clicking on accounts > manage accounts. Sudo ejabberdctl register testuser testpassword There are numerous ways of adding new accounts, some are shown below: Killing frozen ejabberd processes might work wonders as well: ps -aux | grep 'ejabberd' If you receive any errors check the latest error logs found in /var/log/ejabberd for guidance. I also linked the documentaries for reference at the appropriate locations. Restart the ejabberd deamon: sudo service ejabberd restart Uncomment and change the following in ejabberd.yml: captcha_cmd: "/usr/share/ejabberd/captcha.sh"Ĭaptcha_protected: true preview of a captcha Installing imagemagick and ghostscript: sudo apt install imagemagick ghostscript -no-install-recommends register Enabling captcha to increase spam protection Store passwords hashed (SCRAM) and set the FQDN: auth_password_format: scramĮnable mod_register to allow In-Band registration: mod_register: Set the path to the certfile, enable and force TLS on the listening port 5222: certfile: "/etc/ejabberd/ejabberd.pem" Create a backup of the initial configuration file: cp /etc/ejabberd/ejabberd.yml /etc/ejabberd/ The whole configuration file is streaked with helpful comments. You should be aware of correct indention and case-sensitivity whilst working with. Making the script executable and executing the script: sudo chmod +x certificate_script Which includes: cat /etc/letsencrypt/live//priykey.pem \ The certificates created by certbot only last 90 days, thus I wrote a script which simplifies combining the new certificates into the file that is expected by ejabberd (ejabberd.pem): sudo touch certificate_script Copy it to /etc/letsencrypt/ and rename it to ca.crt: wget "" Get the public root certificate of let’s encrypt, it is used for signing our certificates. 5269/tcp – server to server connection (s2s)įirst you should ensure that everything is up to date: sudo apt-get update & upgrade Installing ejabberd sudo apt-get install ejabberd ejabberd-contrib Create ejabberd.pem using Let’s Encrypt and certbot.5222/tcp – client to server connection (c2s).This tutorial assumes the following setup: It commences with the essentials and closes with enabling various options (linking ejabberd with mysql, file transfer proxy via mod_proxy65). The most compelling aspects of ejabberd are it’s scalability, it’s robustness and the fact that it is so well documented. Having the goal of offering a safe way to communicate for friends and nearby living people I decided to setup my own Jabber / XMPP server using Debian 8.7 (jessie).
0 kommentar(er)
