I tried with openssl s_client but it didn't display a certificate; xmpp.net IM Observatory seems to return relevant info and says the cert is good, why doesn't openssl?
-bash-4.1$ openssl s_client -connect 127.0.0.1:5222 </dev/null -starttls xmpp
CONNECTED(00000007)
---
no peer certificate available
---
No client certificate CA names sent
---
SSL handshake has read 421 bytes and written 114 bytes
---
New, (NONE), Cipher is (NONE)
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
---
xmpp.net also said :
Server uses Diffie-Hellman parameters of < 2048 bits
Does this refer to my private key?
I tried editing the java.security file and removed an earlier warning about DSA by removing that cipher, and thought I addressed the DH keySize < 2048 by adding :
jdk.tls.disabledAlgorithms=SSLv3, RC4, DH keySize < 2048
jdk.certpath.disabledAlgorithms=MD2, DSA, RSA keySize < 2048, DH keySize < 2048
but xmpp.net still says :
Server uses Diffie-Hellman parameters of < 2048 bits
I did restart Jive after editing java.security. Thanks for any help!
SG