Open tomgagdotnet opened 8 years ago
This is what I can see from the logs, following is my ChatSecure configuration. My ejabberd server is at mydomain.com with IP 10.0.0.1. I created two users: "test", and "myuser". First I connect with user "test" via my Jabber client (1.1.1.1) and everything works fine:
2016-05-29 12:24:27.769 [info] <0.447.0>@ejabberd_listener:accept:313 (#Port<0.6705>) Accepted connection 1.1.1.1:35199 -> 10.0.0.1:5222
2016-05-29 12:24:28.320 [info] <0.453.0>@ejabberd_c2s:wait_for_feature_request:733 ({socket_state,p1_tls,{tlssock,#Port<0.6705>,#Port<0.6739>},<0.452.0>}) Accepted authentication for test by ejabberd_auth_internal
2016-05-29 12:24:28.517 [info] <0.453.0>@ejabberd_c2s:wait_for_session:1079 ({socket_state,p1_tls,{tlssock,#Port<0.6705>,#Port<0.6739>},<0.452.0>}) Opened session for test@mydomain.com/45[randomdigits]73832743207
Now if I try to connect with "myuser" from Chatsecure, it hangs on "Connecting..." and from the logs I only see this:
2016-05-29 12:25:35.017 [info] <0.447.0>@ejabberd_listener:accept:313 (#Port<0.6742>) Accepted connection 2.2.2.2:49754 -> 10.0.0.1:5222
Of course, if I connect myuser from my other client, it works:
2016-05-29 12:27:02.162 [info] <0.447.0>@ejabberd_listener:accept:313 (#Port<0.6746>) Accepted connection 1.1.1.1:35200 -> 10.0.0.1:5222
2016-05-29 12:27:02.645 [info] <0.458.0>@ejabberd_c2s:wait_for_feature_request:733 ({socket_state,p1_tls,{tlssock,#Port<0.6746>,#Port<0.6748>},<0.457.0>}) Accepted authentication for myuser by ejabberd_auth_internal
2016-05-29 12:27:02.847 [info] <0.458.0>@ejabberd_c2s:wait_for_session:1079 ({socket_state,p1_tls,{tlssock,#Port<0.6746>,#Port<0.6748>},<0.457.0>}) Opened session for myuser@mydomain.com/71[randomdigits]4523783207
My ChatSecure configuration for the "myuser" account:
XMPP Resource: (empty) XMPP Resource Priority: 20 Server Port: TCP Port for XMPP Server Connect Server: (empty) Chat Encryption: Always Require Transport Encryption: [checked] Allow Plain Text Auth: [unchecked] Do SRV Lookup: [checked]
So it looks like there is a problem of authentication, but I really can't understand what I'm doing wrong, my server works with other clients as I said :( any help would be appreciated, thanks!
(sorry if the description is imprecise, it's the first time I use GitHub)
I'm running ChatSecure for Android (info.guardianproject.otr.app.im version 14.2.3) and I cannot connect to my self-hosted XMPP server: when I add the account, the side panel shows "Connecting..." but nothing happens and I cannot chat/add buddies.
My phone is a Samsung Galaxy SII (GT-i9100G) running CyanogenMod 10.2-201309-11-NIGHTLY-i9100G (Android 4.3)
My XMPP server is ejabberd 14.07 on Debian Jessie with a certificate issued by Let's Encrypt, and it works well with other clients (e.g. Pidgin) but it has a somewhat strict security policy, so maybe I'm enforcing cipher suites that ChatSecure does not support? Here are some relevant lines extracted from my ejabberd.yml configuration file, follows the full ejabberd.yml file (with minor edits) and some log lines.
Thanks for any help :)
port: 5222 module: ejabberd_c2s protocol_options:
starttls_required: true
access: c2s
ciphers: "EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA256:EECDH:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!IDEA:!ECDSA:kEDH:CAMELLIA128-SHA:AES128-SHA"
port: 5269 module: ejabberd_s2s_in s2s_use_starttls: required s2s_protocol_options:
s2s_ciphers: "EDH+CAMELLIA:EDH+aRSA:EECDH+aRSA+AESGCM:EECDH+aRSA+SHA256:EECDH:+CAMELLIA128:+AES128:+SSLv3:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!PSK:!DSS:!RC4:!SEED:!IDEA:!ECDSA:kEDH:CAMELLIA128-SHA:AES128-SHA"
auth_method: internal
Here is the complete ejabberd.yml file:
shaper: ## ## The "normal" shaper limits traffic speed to 1000 B/s ## normal: 1000
. ====================
' ACCESS CONTROL LISTS
acl: ## ## The 'admin' ACL grants administrative privileges to XMPP accounts. ## You can put here as many accounts as you want. ## admin: user:
"admin": "localhost" ##
Blocked users ## blocked: user:
Local users: don't modify this. ## local: user_regexp: ""
----8<--------8<--------8<--------8<--------8<--------8<--------8<--------8<--------8<--------8<--------8<----