[jdev] TLS version clarification for RFC 3920
Tomasz Sterna
tomek at xiaoka.com
Wed Oct 15 01:18:50 CDT 2008
> Openfire requires a SSLv3 _handshake_, and Jabberd2 forces a TLSv1
> handshake. So they can't handshake.
>
> Both support SSLv3 and TLSv1 as a final encryption protocol. (checked via
> openssl command line tool)
The TLSv1 handshake is enforced to allow for TLS compression.
This feature is available only with TLS handshakes.
Using TLSv1 handshakes gives stream compression, with no cost, to
servers that do not support XEP-0138.
With both SSLv3 and TLSv1 handshakes enabled, the SSLv3 is used and TLS
compression cannot be negotiated.
--
/\_./o__ Tomasz Sterna
(/^/(_^^' http://www.xiaoka.com/
._.(_.)_ im:smoku at xiaoka.com
More information about the JDev
mailing list