[Standards] certification etc.

Matthias Wimmer m at tthias.eu
Thu Mar 29 14:59:39 UTC 2007


Hi Philipp!

Philipp Hancke schrieb:
>> OpenSSL and GnuTLS do support compression ... and I guess they are the 
>> most used TLS implementations.
> 
> openssl based servers (old jabberd1, jabberd2, ejabberd, psyced)
> send SSLv2 handshakes in the s2s (client) case and can therefore not use
> compression :-(

This is only a matter of how OpenSSL is used - not a restriction we have 
in using OpenSSL.

> API problem or deployment problem -  accepting only TLSv1 client hellos
> would be a good thing (TM), but afaics dramatically reduces the number
> of servers you can talk to currently).

But all servers ARE accepting TLS client hellos. So you can just start 
sending them.

jabberd14 1.6.1 is sending TLS 1.2 client hellos but still accepts all 
versions for incoming TLS exchanges.


Matthias



More information about the Standards mailing list