I have recently installed ejabberd 15.09 and left the default configuration for the most part (just set TLS to required and set the ciphers).
With this configuration, only TLSv1.2 is enabled according to xmpp.net (so no TLSv1 and TLSv1.1 and thus no compatibility for some clients).
How can I enable TLSv1 and TLSv1.1? I have only seen options to disable SSLv3 and SSLv2 (which both seem to be disabled by default).
I can paste the configuration later if that helps.
Here is the relevant part of
Here is the relevant part of the configuration. I left the
protocol_options
at their default value.Any ideas how to enable TLSv1 and/or TLSv1.1?
Just found out that my cipher
Just found out that my cipher suite only included TLSv1.2 compatible ciphers for my version of openssl. Now usinghttps://cipherli.st :)
EECDH+AESGCM:EDH+AESGCM:AES256+EECDH:AES256+EDH
thanks to