[Standards] XEP-0368: What does a . for a target mean?in?_xmpps-client/server records?

Kim Alvefur zash at zash.se
Sun Jun 30 18:14:49 UTC 2019


On Sun, Jun 30, 2019 at 04:55:47PM +0000, Sam Whited wrote:
> On Sun, Jun 30, 2019, at 16:32, Ralph Meijer wrote:
> > Do you know which server implementations currently support both TLS
> > and non-TLS (with STARTLS) on the same port?
> 
> I'm sure if any of them do, but the fallback would still be useful in
> case the service is only configured to support direct TLS on the
> regular port.

Please don't. While detecting use of TLS or plain is fairly simple it is
more complicated to handle both on the same port. I don't know any
socket handling framework that makes this easy. Usually the TLS library
takes over the socket and if you inspected the first bytes then it
fails.

Trying direct TLS on a starttls port will usually result in garbage
being fed to the XML parser, which leads to very loud error messages,
possibly even including thing garbage.

I's annoying enough when some clients do this, don't legitimize it.

-- 
Regards,
Kim "Zash" Alvefur
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://mail.jabber.org/pipermail/standards/attachments/20190630/e236bd2c/attachment-0001.sig>


More information about the Standards mailing list