Opened 15 years ago

Closed 13 years ago

Last modified 11 years ago

#1323 closed enhancement (fixed)

Jabber option "Use TLS encryption (required)"

Reported by: Owned by: am
Milestone: Component: Service/XMPP (Jabber)
Version: Severity: normal
Keywords: Cc:
Patch Status:


Currently, when configuring a Jabber account, you can check "Use TLS encryption (if possible)" or "Force old-style SSL". I'd like an additional option (or change the "Use TLS encryption UI element to be a drop down of "required", "optional", or "none") so that TLS can be set to required. The current options don't give a way to require TLS in newer style servers which don't offer the SSL wrapped port ("Force old-style SSL", port 5223).

The current "if possible" means that it is possible a connection won't be encrypted so even though the password isn't sent in the clear ("Allow plaintext authentication"), the rest of the conversation is in the clear and that is potentially more damaging then the transmission of the password.

Change History (8)

comment:1 Changed 15 years ago by rudy@…

I second this request. /me prods jeff, evan and adam.

comment:2 Changed 14 years ago by Chris Forsythe

field_haspatch: 0
Milestone: Adium X 1.2

comment:3 Changed 14 years ago by Chris Forsythe

Milestone: Adium X 1.2Sometime after 1.0

comment:4 Changed 14 years ago by Chris Forsythe

Milestone: Good idea for "later"Waiting on libgaim

Do we need this implemented libgaim side first?

comment:5 Changed 13 years ago by Eric Richie

Milestone: Waiting on libgaimWaiting on libpurple

comment:6 Changed 13 years ago by Andreas Monitzer

Owner: changed from nobody to Andreas Monitzer
Patch Status: None
pending: 0

comment:7 Changed 13 years ago by Andreas Monitzer

Resolution: fixed
Status: newclosed

(In [20137]) Added an option to require SSL or TLS when connecting to an XMPP server. Fixes #1323

comment:8 Changed 11 years ago by (none)

Milestone: Waiting on libpurple

Milestone Waiting on libpurple deleted

Note: See TracTickets for help on using tickets.