Hello. we are planning on placing Openfire in a public IP space. This will get scanned by our policy scanner. Is there a way to disable SSL Version 2 on openfire?
See here: http://www.igniterealtime.org/community/thread/32993
If you set your security settings to require TLS that should enable you to pass any scans (at least it did for me on my test server).
Hope this helps.