On Tue, Oct 14, 2008 at 10:38:38PM +0200, Norman Rasmussen wrote: > Does RFC 3920 (bis?) specify what SSL/TLS versions should be supported? > > As far as I understand the versions are: > > SSLv2 = 2.? > SSLv3 = 3.0 > TLSv1 = 3.1 (as per RFC 2246) > > I would assume that most servers should support SSLv3 and TLSv1? > > It seems that Openfire 3.6.0a, doesn't support TLSv1, only SSLv3. Jabberd2 > 2.2.x only supports TLSv1, and not SSLv3: > http://jabberd2.xiaoka.com/ticket/256 > #comment:3
And also, which handshakes may be used? It appears that some clients are now using SSLv23 handshakes (v2 hello, but supporting SSLv2 and up), because of Google Talk. That service seems to do only SSLv3. -- Groetjes, ralphm _______________________________________________ JDev mailing list FAQ: http://www.jabber.org/discussion-lists/jdev-faq Forum: http://www.jabberforum.org/forumdisplay.php?f=20 Info: http://mail.jabber.org/mailman/listinfo/jdev Unsubscribe: [EMAIL PROTECTED] _______________________________________________
