SSL/TLS configuration

The documentation provides only very limited information on this: How do I configure the details of TLS/SSL connections in ejabberd?

E.g.:
* How do I choose which cipher-suites to allow?
* How do I set which TLS protocol versions to allow? E.g. how to disable SSLv3?
* How can I set a cert per domain?

For all of these, the manual doesn't provide me any hints.

There's recently quite some discussion to increase the security of xmpp in regard to SSL security. See e.g. here:
http://xmpp.net/
and here:
https://github.com/stpeter/manifesto/blob/master/manifesto.txt

So I think this is an important issue.

Syndicate content