[jadmin] Jabberd 1.4 and TLS not SSL
Matthias Wimmer
m at tthias.eu
Fri Mar 16 11:59:04 CDT 2007
Hi Markus!
Markus Meyer schrieb:
>> By default, jabberd14 offers you SSL version 2, SSL version 3 and TLS
> Hm, then why do I get an error when trying to connect via STARTTLS from
> Tkabber. Maybe it's the wrong program. When I tell it to use SSL
> everything works fine.
Okay, so you are not interested in TLS, but in STARTTLS, which is
something different.
SSL and TLS are the same protocols, just different version. From version
3.1 on of SSL, the protocol has been renamed to TLS. So even if you
connect on port 5223, you normally do TLS and not SSL in our days. Even
if most of the time people are talking about SSL, they are using TLS in
our days.
STARTTLS is something different, it is a mechanism to establish an SSL
or TLS layer. (Again STARTTLS can be used with SSL and TLS, as they are
just different versions of the same protocol.)
>> done with the no-ssl-v2='true' and no-ssl-v3='true' attributes on the
>
> Tried that:
> <key ip='NA' no-ssl-v2='true' no-ssl-v3='true'>key.pem</key>
> Restart and the same as above with Tkabber.
You disabled SSL and had only support for TLS, but that does not mean,
that you have support for *START*TLS now. That's why I asked, if you are
really talking about TLS and not STARTTLS.
>> For all further questions, it would be helpful to know which version
>> of jabberd14 you are using.
>
> # jabberd -v
> Jabberd Version 1.4.3
> # dpkg -s jabber | grep ^Vers
> Version: 1.4.3-3
This version of jabberd14 is very old and predates the STARTTLS
specification. You should upgrade to a newer version of jabberd14.
STARTTLS is supported since version 1.4.4 of jabberd. The latest version
is 1.6.0.
Tot kijk
Matthias
More information about the JAdmin
mailing list