@GossiTheDog huh.
I don't have a lot of knowledge of XMPP, but, any theories on why would they MITM the STARTTLS port, but not the TLS one? it looks like they definitely could have done that too...
Top-level
@GossiTheDog huh. I don't have a lot of knowledge of XMPP, but, any theories on why would they MITM the STARTTLS port, but not the TLS one? it looks like they definitely could have done that too... 1 comment
|
@elizabeth
STARTTLS is the most widely used port by #xmpp clients, as it allows selecting the right server domain (this predates TLS SNI by quite a while, and then there is inertia). Many xmpp servers don't even offer Direct TLS, and IIRC no client will directly probe it, if there is no explicit SRV record for Direct TLS.
@GossiTheDog