>> Is ejabberd difficult to run over the internet safely? > > I doubt it. But you'd want to give the docs a thorough reading to make > sure you have security questions locked down properly. Off the top of > my head...don't allow remote registrations (i.e. don't allow clients > to create accounts). Require SSL/TLS. Always make sure you're up on > the latest security patches. > > Beyond that, you'd have to read docs. Which is what a lot of > self-described sysadmins can't be bothered to do.
Fair enough. It sounds like IRC is especially tricky with regard to security but ejabberd isn't. - Grant