https://www.ejabberd.im/node/4482 en https://www.ejabberd.im/node/4482#comment-56946 <div class="quote-msg"> <div class="quote-author"><em>badlop</em> wrote:</div> <div class="quote-msg"> <div class="quote-author"><em>rhotech</em> wrote:</div> <p>1) I have starttls_required set in my .cfg file. I'm guessing all communication (not just passwords) are encrypted, and the server will not accept a connection from a client that doesn't offer TLS, correct? </p></div> <p>Right. All the clients that connect to your 5222 port must setup a TLS connection, or they are disconnected. And that connection is used for all the traffic between the client and your server (authentication, roster, messages, presences, chat rooms, ...) </p></div> <p>Perfect.</p> <div class="quote-msg"> <div class="quote-author"><em>badlop</em> wrote:</div> <div class="quote-msg"> <div class="quote-author"><em>rhotech</em> wrote:</div> <p>2) If using a video stream from the same server, is the video also completely encrypted? </p></div> <p>That depends if the client sends the video stream over the server using its connection to port 5222, or using another connection to proxy65/STUN, or directly to his contact's client.</p></div> <p>How can I tell? The server is firewalled and only allows a very min. number of ports to be open. The test was using to iChat clients.</p> <p>thanks a lot</p> Wed, 05 Jan 2011 17:05:45 +0000 rhotech comment 56946 at https://www.ejabberd.im https://www.ejabberd.im/node/4482#comment-56939 <div class="quote-msg"> <div class="quote-author"><em>rhotech</em> wrote:</div> <p>1) I have starttls_required set in my .cfg file. I'm guessing all communication (not just passwords) are encrypted, and the server will not accept a connection from a client that doesn't offer TLS, correct? </p></div> <p>Right. All the clients that connect to your 5222 port must setup a TLS connection, or they are disconnected. And that connection is used for all the traffic between the client and your server (authentication, roster, messages, presences, chat rooms, ...)</p> <div class="quote-msg"> <div class="quote-author"><em>rhotech</em> wrote:</div> <p>2) If using a video stream from the same server, is the video also completely encrypted? </p></div> <p>That depends if the client sends the video stream over the server using its connection to port 5222, or using another connection to proxy65/STUN, or directly to his contact's client.</p> Tue, 04 Jan 2011 15:28:00 +0000 mfoss comment 56939 at https://www.ejabberd.im