Mandriva Linux Security Advisory 2014-207 – A flaw was discovered in ejabberd that allows clients to connect with an unencrypted connection even if starttls_required is set.