[Operators] Operators Digest, Vol 91, Issue 16
Bandie Yip Kojote
bandie at ttygap.net
Thu Oct 29 14:19:09 UTC 2015
-----BEGIN PGP SIGNED MESSAGE-----
The charge free StartSSL certificate gives out certificates with wrong
purpose flags. When I set ejabberd to "require valid certs only" your
server would be blocked.
I made this experience to everyone who has this free StartSSL cert.
Btw to the administrators of xmpp.net: I remember to fix the bug which
abort the test for those who have set "require valid certs only". In
the past we had it working.
On 10/29/2015 02:05 PM, Daniele Ricci wrote:
> Yesterday evening I've replaced the certificate with one issued by
> StartSSL. I now have grade A.
> On Thu, Oct 29, 2015 at 1:00 PM, <operators-request at xmpp.org>
>> Interesting. I use a CAcert certificate on wyrddreams.org and the
>> IM Observatory doesn't seem to have any problems with it. I don't
>> see anything obviously wrong in what you pasted, and attempting
>> to connect from here didn't yield anything useful:
>> This is using OpenSSL 1.0.1f from the Ubuntu repos.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
-----END PGP SIGNATURE-----
More information about the Operators