Hi,

I have clients running with a Jabberd2 server using LetsEncrypt
certifcate for the Jabber server.
Wireshark shows the communication between client and server is using
TLS.

If clients want to be sure to get an encrypted end-to-end connection
across different jabberd servers
there are several clients available to encrypt the messages
(ChatSecure, OMEMO). No matter the server-server communication.

You cannot assume a TLS connection is secure enough to transport secure
messages.

Therefore this is not a RC-bug in my opinion.

Greetings.
Willem vdAkker

Reply via email to