On Sun, Nov 16, 2008 at 09:37:58PM -0500, Jean-Paul Calderone wrote: > On Sun, 16 Nov 2008 21:22:43 -0500, Christopher Zorn <[EMAIL PROTECTED]> > wrote: > >On Sun, Nov 16, 2008 at 6:05 AM, xavier dutoit <[EMAIL PROTECTED]> wrote: > > > >> Hi all, > >> > >> I'm trying to connect to a gmail account with the echobot as written by > >> jack moffit > >> > >> http://metajack.im/2008/09/25/an-xmpp-echo-bot-with-twisted-and-wokkel/ > >> > >> From what I understood, the plain mechanism is only available when you have > >> a secure connection. > >> http://twistedmatrix.com/pipermail/twisted-python/2008-March/017047.html > >> > >> Is there an option to force the TLS connection, or something to add on my > >> install (I have installed python-openssl) ? > > > > [..] > > This sounds like <http://twistedmatrix.com/trac/ticket/3463>. IIRC, near > as I could ever determine, this is a bug in the gtalk server. I may recall > that it can be worked around by adding an extension to the handshake, or I > may be mixing this up with another problem. >
The problem is indeed caused by a change in the Google Talk server implementation that makes it become unresponsive after negotiating a TLSv1 security transport layer. I've tried to contact the Google Talk team about this, but have so far not received a response. An ugly workaround is to patch Twisted to send SSLv23 hellos and end up with an SSLv3 connection, but that is both incorrect and potentially opens up the client for particular vulnerabilities in combination with other servers. I'll try to contact the Google Talk team again this week. -- Groetjes, ralphm _______________________________________________ Twisted-Jabber mailing list [email protected] https://mailman.ik.nu/mailman/listinfo/twisted-jabber
