https://www.ejabberd.im/node/3746 en https://www.ejabberd.im/node/3746#comment-54903 <p>From what I know, ejabberd only uses the server certificate to guarantee the server is the real server. And ejabberd verifies the user is the real user only by requesting the XMPP account password.</p> <p>So, it seems we have two different topics here:</p> <ol> <li>bug: ejabberd should no ask for a client certificate, because client-certificate-verification isn't implemented. </li><li>feature: ejabberd could support to request and verify client certificate. And this could be optional. </li></ol> <p>It would be nice if you can try that with ejabberd 2.1.0 and comment if the problem is still present.</p> <p>Or if you can provide a simple way to test this, so even inexperienced people can test if that is solved or not. Maybe using console programs like lynx/wget/w3m/...?</p> <p>BTW, there's a related ticket: <noindex><a href="https://support.process-one.net/browse/EJAB-833" rel="nofollow" >Do not ask certificate for client (c2s)</a></noindex></p> <p>With all the information that you will provide, I'll submit a ticket for the bug.</p> Mon, 16 Nov 2009 13:10:13 +0000 mfoss comment 54903 at https://www.ejabberd.im