[jdev] Any known s2s SASL EXTERNAL impls as described in XEP-0178

Chris Eagan cheagan at microsoft.com
Fri Feb 4 17:41:29 CST 2011


Does anyone know of available servers that implement the s2s recommendation for SASL EXTERNAL as described in XEP-0178?

My understanding of this best practice is that both the sending and receiving servers must present certificates during TLS negotiation.  I've been playing with Openfire, ejabberd and Jabber XCP 5.4 and have not been able to get them to present certificates for connections they initiate (indeed none of them claim to support XEP-178 s2s either :).  When these servers open the TCP connection and the stream, they do not present certs during STARTTLS so the receiving server can't use the cert to authenticate them.

Thank you,

Chris E.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.jabber.org/pipermail/jdev/attachments/20110204/bce162c7/attachment.htm>

More information about the JDev mailing list