[jdev] openssl s_client patch (was: IMPORTANT www.jabber.org software listings)

Norman Rasmussen norman at rasmussen.co.za
Tue Aug 12 04:00:25 CDT 2008


On Mon, Feb 25, 2008 at 10:02 PM, Philipp Hancke
<fippo at goodadvice.pages.de>wrote:

> Peter Saint-Andre wrote:
>
>> Because we want to do this:
>>   openssl s_client -connect example.com:5223 -CAfile ca.crt
>> AFAIK there is no good way to do something similar for STARTTLS
>> connections. If you know of a way, please do let us know.
>>
>
> adding a xmpp-starttls to s_client is not that difficult...
>
> A patch (diff against good old openssl 0.9.8d) is attached.
> Beware, detection of the starttls stream feature is not perfectly
> reliable. Usage:
> `openssl s_client -connect example.com:5222 -starttls xmpp -starttls_to
>  example.com`
>

FYI: I'd like to see this in openssl officially, so it's been reported as
http://rt.openssl.org/Ticket/Display.html?id=1730

-- 
- Norman Rasmussen
- Email: norman at rasmussen.co.za
- Home page: http://norman.rasmussen.co.za/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.jabber.org/pipermail/jdev/attachments/20080812/035abd9a/attachment-0002.htm>


More information about the JDev mailing list