jdev - 2023-12-24


  1. moparisthebest

    > moparisthebest, does your implementation also support authenticating the initiating entity via certificates? flow: *only* via certificates, what brought this up is xmpp-dns shows DirectTLS s2s as failed because I see s2s and no certificate so just close the socket

  2. Martin

    It checks for the stream closing. Without this it sometimes showed directTLS as passed but it only did tls to sslh/nginx and the xmppd behind was not listening.

  3. Martin

    Actually this works with prosody, ejabberd, tigase, metronome and openfire. xmpp-proxy seems to be the only implementation which closes the connection without sending an error.

  4. moparisthebest

    Martin: do you know if the ones you checked had dialback enabled or not?

  5. Martin

    No idea