Ask / Submit

Revision history [back]

click to hide/show revision 1
initial version

posted 2014-01-12 14:00:53 +0300

You can add your CA or certificate for jabber without adding it to the system certificate chain.

# mkdir -p /home/nemo/.config/telepathy/certs/
# cp /home/nemo/Downloads/jabber-ca_or_cert.crt /home/nemo/.config/telepathy/certs/

I had to re-add my jabber account after this. Maybe a reboot will also apply the new certificate to the jabber client

You can add your CA or certificate for jabber without adding it to the system certificate chain.

# mkdir -p /home/nemo/.config/telepathy/certs/
# cp /home/nemo/Downloads/jabber-ca_or_cert.crt /home/nemo/.config/telepathy/certs/

I had to re-add my jabber account after this. Maybe a reboot will also apply the new certificate to the jabber client

Edit: To extract a server certificate, you can use openssl cmdline util. It will show you with some debug information all certificates. Cut & Copy these certificates (starts with '-----BEGIN CERTIFICATE-----' and ends '-----END CERTIFICATE-----') into an extra file and name it somewhat.crt

# # for servers which supports starttls
# openssl s_client -connect jabber.ccc.de:5222 -starttls xmpp -showcerts
# # for server with a dedicated ssl port
# openssl s_client -connect jabber.ccc.de:5223 -showcerts

You can add your CA or certificate for jabber without adding it to the system certificate chain.

# $ mkdir -p /home/nemo/.config/telepathy/certs/
# $ cp /home/nemo/Downloads/jabber-ca_or_cert.crt /home/nemo/.config/telepathy/certs/

I had to re-add my jabber account after this. Maybe a reboot will also apply the new certificate to the jabber client

Edit: To extract a server certificate, you can use openssl cmdline util. It will show you with some debug information all certificates. Cut & Copy these certificates (starts with '-----BEGIN CERTIFICATE-----' and ends '-----END CERTIFICATE-----') into an extra file and name it somewhat.crt

# # for servers which supports starttls
# $ openssl s_client -connect jabber.ccc.de:5222 -starttls xmpp -showcerts
# # for server with a dedicated ssl port
# $ openssl s_client -connect jabber.ccc.de:5223 -showcerts