[jdev] TLS version clarification for RFC 3920
Ralph Meijer
jabber.org at ralphm.ik.nu
Tue Oct 14 15:45:42 CDT 2008
On Tue, Oct 14, 2008 at 10:38:38PM +0200, Norman Rasmussen wrote:
> Does RFC 3920 (bis?) specify what SSL/TLS versions should be supported?
>
> As far as I understand the versions are:
>
> SSLv2 = 2.?
> SSLv3 = 3.0
> TLSv1 = 3.1 (as per RFC 2246)
>
> I would assume that most servers should support SSLv3 and TLSv1?
>
> It seems that Openfire 3.6.0a, doesn't support TLSv1, only SSLv3. Jabberd2
> 2.2.x only supports TLSv1, and not SSLv3: http://jabberd2.xiaoka.com/ticket/256
> #comment:3
And also, which handshakes may be used? It appears that some clients are
now using SSLv23 handshakes (v2 hello, but supporting SSLv2 and up),
because of Google Talk. That service seems to do only SSLv3.
--
Groetjes,
ralphm
More information about the JDev
mailing list