[Operators] Security Test Day - feedback needed!

Marco Cirillo maranda at lightwitch.org
Mon Jan 6 11:40:57 UTC 2014


Il 06/01/2014 04:32, Peter Saint-Andre ha scritto:
>> - All servers which run Openfire even if they support TLS, they
>> seem to trample on authentication steps when they open a stream to
>> a server which presents both SASL and DB
> It would be good to know more about what's happening here so that we
> can ping Guus about it.
>
There're seemingly no problems on the outgoing streams to OF,
but when Openfire opens a stream back to my server it fails the TLS 
handshake
("wrong version number" probably negotiates the wrong protocol version?).
>> And beside this had some not so nice encounters with very buggy
>> jabberd2 servers which started to loop attempting to re-establish a
>> connection (very fast beside) when the server closed down their
>> streams.
> I'll post to the jabberd2 list about that. Do we know what version of
> jabberd2 was involved?
>
2.2.14 (also on FreeBSD)

-- 

*Marco Cirillo*
/LW.Org/LW.Org IM Owner & Head Developer/
/Metronome IM Project Mantainer/Developer/
/Jappix Mantainer/Developer/
http://lightwitch.org

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.jabber.org/pipermail/operators/attachments/20140106/834f15f4/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 4512 bytes
Desc: Firma crittografica S/MIME
URL: <http://mail.jabber.org/pipermail/operators/attachments/20140106/834f15f4/attachment-0001.bin>


More information about the Operators mailing list