I tried with openssl s_client but it didn’t display a certificate; xmpp.net IM Observatory seems to return relevant info and says the cert is good, why doesn’t openssl?
-bash-4.1$ openssl s_client -connect 127.0.0.1:5222 </dev/null -starttls xmpp
CONNECTED(00000007)
no peer certificate available
No client certificate CA names sent
SSL handshake has read 421 bytes and written 114 bytes
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
xmpp.net also said :
Server uses Diffie-Hellman parameters of < 2048 bits
Does this refer to my private key?
I tried editing the java.security file and removed an earlier warning about DSA by removing that cipher, and thought I addressed the DH keySize < 2048 by adding :
jdk.tls.disabledAlgorithms=SSLv3, RC4, DH keySize < 2048
jdk.certpath.disabledAlgorithms=MD2, DSA, RSA keySize < 2048, DH keySize < 2048
but xmpp.net still says :
Server uses Diffie-Hellman parameters of < 2048 bits
I did restart Jive after editing java.security. Thanks for any help!
SG