testing jabberd2 TLS with openssl s_client
hi, i am struggling with the command to test TLS capabilities of the jabberd2 server. the command i am using is: openssl s_client -CApath /etc/ssl/certs -starttls xmpp -connect server.domain.tld:5222 but all i am getting is: CONNECTED(0003) what i expect is a dump of the certificate chain, like it is with all other protocols which are supported by openssl s_client. any ideas? thank you in advance and greetings -mog
Re: testing jabberd2 TLS with openssl s_client
Dnia 2015-05-08, piÄ… o godzinie 22:47 +0200, Guenther Kuenzel pisze: what i expect is a dump of the certificate chain, like it is with all other protocols which are supported by openssl s_client. any ideas? Misconfigured server? With my server it works just fine... 23:34 ~ $ openssl s_client -CApath /etc/ssl/certs -starttls xmpp -connect chrome.pl:5222 CONNECTED(0003) depth=1 C = IL, O = StartCom Ltd., OU = Secure Digital Certificate Signing, CN = StartCom Class 1 Primary Intermediate Server CA [...] i:/C=IL/O=StartCom Ltd./OU=Secure Digital Certificate Signing/CN=StartCom Class 1 Primary Intermediate Server CA 1 s:/C=IL/O=StartCom Ltd./OU=Secure Digital Certificate Signing/CN=StartCom Class 1 Primary Intermediate Server CA i:/C=IL/O=StartCom Ltd./OU=Secure Digital Certificate Signing/CN=StartCom Certification Authority [... and so on ...] -- /o__ Q: How do you stop an elephant from charging? (_^' A: Take away his credit cards. signature.asc Description: This is a digitally signed message part
Re: testing jabberd2 TLS with openssl s_client
what i expect is a dump of the certificate chain, like it is with all other protocols which are supported by openssl s_client. any ideas? Misconfigured server? With my server it works just fine... 23:34 ~ $ openssl s_client -CApath /etc/ssl/certs -starttls xmpp -connect chrome.pl:5222 CONNECTED(0003) depth=1 C = IL, O = StartCom Ltd., OU = Secure Digital Certificate Signing, CN = StartCom Class 1 Primary Intermediate Server CA looks like i have to check my configuration. i assumed TLS was working fine, because i could connect to my server with TLS using yaxim and kopete, but not with openssl s_client. thanks for your fast answer.