But: In site client-connections-settings.jsp stands:
SSL Enabled: Yes
Client SSL Port: 5223
I connect over port 5222 - as i understood 5223 use the old version of ssl and 5222 the new version, right?
But there stands in the log:
Started plain (unencrypted) socket on port: 5222
I think this means, that both *can* be accepted if openfire is configurated to accept both? But in my case i accept SSL only so there is no unencrypted traffic on port 5222.
This is my understanding as well. All connections are on this port unless you are connecting via older SSL versions. I suspect the UI was never updated to reflect that. It should probably show the TLS (SSL v3) port as 5222 and SSL v1,v2 as 5223.
As CSH mentioned, the opening connection negotiation is always unecrypted as that is how TLS works.
