Hello list,
some of the users of 0nl1ne.at noticed me that connections to specific
servers are not reliable since a few days (working only in one
direction), and because I have no idea where this comes from
(contacted already one admin of one of these servers, cluster.sx - he
said he did only a openssl upgrade, and I updated the CaCert
certificate for 0nl1ne.at), I'm writing now to this nice list.
Why I wrote "strange" in the subject? Because I run multiple domains
on the same ejabberd instance, and with the other two domains
(linuxlovers.at and jabber.linuxlovers.at) these problems don't happen.
Technical information from my side: In my ejabberd configuration file
(linuxlovers.at/0nl1ne.at) I've set {s2s_use_starttls, optional}. The
linuxlovers.at certificate is from StartSSL, class 2, the 0nl1ne.at is
from CaCert, both with new keys issued on 12th April, older ones
revoked because of heartbleed.
Now what doesn't work:
Sending from 0nl1ne.at to thesecure.biz, cluster.sx,
jabber.i-pobox.net or trying a service discovery on these domains
gives 404-remote server not found.
In my ejabberd.log I only see this line:
I(<0.2621.129>:ejabberd_s2s_out:1203) : Trying to open s2s connection:
0nl1ne.at -> jabber.i-pobox.net with TLS=true
When writing from one of these domains, it works most times, but
answering is again impossible.
Any ideas?
--
Mit freundlichen Grüßen / with best regards,
Nikolaus Polak - http://nikolauspolak.info
