Debian jabber server

[Nithin]

I'm playing with jabber and i've got it working great in plain text mode.
i'm trying to find documentation to enable ssl. google didn't help much.

I trying modifying the jabber.xml file. Having no luck with it.

Any documentation available or anyone know how to do this?

Thanks,
N.

 

[xcript]

IIRC, I just had to set the SSL IP/port and the path to the key.pem I had generated.

To generate a key file to use for the certificate:

$ openssl req -new -x509 -newkey rsa:1024 -keyout privkey.pem -out key.pem
$ openssl rsa -in privkey.pem -out privkey.pem
$ cat privkey.pem >> key.pem
$ rm privkey.pem

Then move it to /etc/jabber/ssl/ (or wherever) and set the path in jabber.xml.

For example, here are the relevant lines in my config:

<ssl port='5223'>10.0.0.51</ssl>
<key ip='10.0.0.51'>/etc/jabber/ssl/server.pem</key>

 

[Nithin]

what is the ip that you put there? is it the server ip?

 

[xcript]

Originally posted by: Nithin
what is the ip that you put there? is it the server ip?

Yup.

 

[Nithin]

i put 127.0.0.1 there. shouldn't that work?
i'm still seeing the messages in plain text.

what about the ip port? should that change from 5222 to 5223?

 

[xcript]

Originally posted by: Nithin
i put 127.0.0.1 there. shouldn't that work?
i'm still seeing the messages in plain text.

what about the ip port? should that change from 5222 to 5223?

If you want to expose the service to the network you'll need to configure the server with the network-accessible interface.
The reason it's working fine now is the default is to listen on every interface (non-SSL).

Make sure you restart the service and enable SSL in the jabber client you're using.

 

[Nithin]

made some progress. i'm using gaim. i restarted the server. and tls checkbox is checked.
it gets stuck during initializing stream. and stays there.

i captured the packets. it completes the tcp connection and send 2 data packets.
xml version and stream version. and then nothing.

any ideas?

 

[xcript]

tail your /var/log/jabber/error.log if you haven't already. Maybe it'll give you some clues.

 

[Nithin]

nothing in the log.
it has the server shutdown/startup message but nothing after that.

 

[xcript]

Post your jabber.xml (preferably, upload it somewhere and post the URL).

 

[Nithin]

http://s31.yousendit.com/d.aspx?id=1L5YY2EYW2FWJ0R57OWZ737FQK

i used this website. i hope its not inconvenient.

 

[xcript]

I can't see any obvious problems with your config, except that you should probably replace all occurrences of 'localhost' (in jabber.xml AND jabber.cfg) with an FQDN or, at the very least, a hostname that is resolvable by both the server and clients on the network.

If you ever want to make use of your server from over the internet you'll want to be using an FQDN. Keep in mind that changing the hostname can cause problems for accounts which were created prior to the change, so it'd be good to get that sorted out now.