mod_telnet_tlsinfo

Introduction

This module adds two commands to the telnet console, c2s:showtls() and s2s:showtls(). These commands shows TLS parameters, such as ciphers and key agreement protocols, of all c2s or s2s connections.

Configuration

Just add the module to the modules_enabled list. There is no other configuration.

modules_enabled = {
    ...
    "telnet_tlsinfo";
}

Usage

Simply type c2s:showtls() to show client connections or s2s:showtls() for server-to-server connections. These commands can also take a JID for limiting output to matching users or servers.

s2s:showtls("prosody.im")
| example.com   ->  prosody.im
|             protocol: TLSv1.1
|               cipher: DHE-RSA-AES256-SHA
|           encryption: AES(256)
|              algbits: 256
|                 bits: 256
|       authentication: RSA
|                  key: DH
|                  mac: SHA1
|               export: false

Field	Description
protocol	The protocol used. Note: With older LuaSec, this is the protocol that added the used cipher
cipher	The OpenSSL cipher string for the currently used cipher
encryption	Encryption algorithm used
bits, algbits	Secret bits involved in the cipher
authentication	The authentication algorithm used
mac	Message authentication algorithm used
key	Key exchange mechanism used.
export	Whethere an export cipher is used

Compatibility

0.9 with LuaSec 0.5	Works
0.10	Merged into core

Installation

With the plugin installer in Prosody 0.12 you can use:

sudo prosodyctl install --server=https://modules.prosody.im/rocks/ mod_telnet_tlsinfo

For earlier versions see the documentation for installing 3rd party modules

Latest changes

All community modules: Unify file extention of Markdown files to .md 2024-10-22
Mark as obsolete since this is included in mod_admin_telnet 2019-09-18
README files: Fix typos 2018-02-04
Various README files: Correct indentation levels, fix syntax and other small fixes 2015-09-02
Convert all wiki pages to Markdown 2015-08-28