[jdev] TLS version clarification for RFC 3920

Norman Rasmussen norman at rasmussen.co.za
Wed Oct 15 03:47:43 CDT 2008


On Wed, Oct 15, 2008 at 8:18 AM, Tomasz Sterna <tomek at xiaoka.com> wrote:

> The TLSv1 handshake is enforced to allow for TLS compression.
> This feature is available only with TLS handshakes.
> Using TLSv1 handshakes gives stream compression, with no cost, to
> servers that do not support XEP-0138.
>
> With both SSLv3 and TLSv1 handshakes enabled, the SSLv3 is used and TLS
> compression cannot be negotiated.
>

(..silly send button..)

from: http://www.openssl.org/docs/ssl/SSL_COMP_add_compression_method.html

The TLS standard (or SSLv3) allows the integration of compression methods
into the communication [...] An OpenSSL client speaking a protocol that
allows compression (SSLv3, TLSv1)  [...]

So it looks like SSLv3 allows compression

-- 
- Norman Rasmussen
- Email: norman at rasmussen.co.za
- Home page: http://norman.rasmussen.co.za/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.jabber.org/pipermail/jdev/attachments/20081015/98c5c2b3/attachment-0003.htm>


More information about the JDev mailing list