[jitsi-users] Security Hardening Jitsi


#1

HI,

1. How can I configure jitsi to use one (and just one; exclusive) root
certificate and ignore all other system-wide root certs without having to
recompile the source? (and cross platform of course)

2. How can I configure jitsi to fail connecting to the jabber server if the
SSL trust can not be established? Currently in a man-in-the-middle attack
scenario jitsi shows a pop-up that the cert does not match and allows the
user to manually accept the certificate (doh!).

regards,

skyper