I am using Wildfire 2.4.0 as the server and Exodus 0.9.1.0 as the client.
I am using the versign 14 day trial SSL certificate, I have installed this correctly after a lot of messing about.
I am using all the default ports.
I have the client running on one PC and the server on another.
On the server I have selected in the security settings that clients are required to connect using a secure connection.
When I log in using Exodus (client) I get a silver padlock in the corner of the window, I was expecting a gold padlock as per conventon (a bit of a side issue) .
OK so thats the background…
However I am not convinced that the client is using SSL to connect to the server. So I thought I would test this by blocking port 5222 on the client machine and try and connect. However I can not connect to the server.
you may want to run ethereal+pcap (unix/win) or tcpdump (unix-only) or use the Windows Network Monitor (afaik w2kServer only) or any other sniffer. Looking at the network trace should not be interesting if you are using SSL.
In XMPP clients can connect to port 5222 (default port) using a plain socket and then negotiate TLS thus securing the connection. I would recommend using port 5222 instead of the old 5223 port (default port) for old the SSL connection method. You can configure from the admin console that TLS is required so clients can only connect to the server if they secure the connection.
To tell if your data is being encrypted or not you will need to do what it2000 suggested and actually look at the data being sent and not just rely on the port it is being sent to/through.
You can also do what gatos suggested and enable in the security section the option to only allow secure (require) connections. Then if the client connects you know it is secure, otherwise it isn’'t.