From 274b2a0249d921f2cb98874073f60ea360159af4 Mon Sep 17 00:00:00 2001
From: Matthew Wild <mwild1@gmail.com>
Date: Mon, 14 Feb 2022 15:59:03 +0000
Subject: [PATCH] prosody.cfg.lua.dist: Update s2s_secure_auth comment and
 default

---
 prosody.cfg.lua.dist | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/prosody.cfg.lua.dist b/prosody.cfg.lua.dist
index 35aa00652..844c0f8a3 100644
--- a/prosody.cfg.lua.dist
+++ b/prosody.cfg.lua.dist
@@ -105,9 +105,10 @@ modules_disabled = {
 -- For more information see https://prosody.im/doc/creating_accounts
 allow_registration = false
 
--- Force certificate authentication for server-to-server connections?
+-- Require valid certificates for server-to-server connections?
+-- If false, other methods such as dialback (DNS) may be used instead.
 
-s2s_secure_auth = false
+s2s_secure_auth = true
 
 -- Some servers have invalid or self-signed certificates. You can list
 -- remote domains here that will not be required to authenticate using