[Pkg-openssl-devel] Bug#871987: back to dovecot
Sebastian Andrzej Siewior
sebastian at breakpoint.cc
Sat Aug 26 16:33:27 UTC 2017
forcemerge 871987 873064
reassign 871987 dovecot 1:2.2.31-1
tags 871987 patch
On 2017-08-25 20:58:31 [+0200], Kurt Roeckx wrote:
> openvpn doesn't seem to make use of the
> SSL_CTX_set_min_proto_version() function yet. I've attached a
> patch that I didn't even try to compile that I think should do the
> right thing.
so here is more or less the same thing for dovecot. Just add
ssl_lowest_version = TLS1.0
to the config to force min protocol version to be TLS1.0 (or TLS1.1 for
the TLS1.1 variant). There are prebuilt binaries at
https://breakpoint.cc/openssl-rebuild/dovecot/
> Kurt
Sebastian
-------------- next part --------------
A non-text attachment was scrubbed...
Name: 0001-Add-support-for-lower-TLS-version-than-default.patch
Type: text/x-diff
Size: 3291 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-openssl-devel/attachments/20170826/59d1ad13/attachment-0001.patch>
More information about the Pkg-openssl-devel
mailing list