Package: perdition
Version: 2.2-3+b3
Severity: normal
Dear Maintainer,
Please add support for tlsv1.3 in
--ssl_(listen|outgoing)_(min|max)_proto_version.
* What led up to the situation?
Trying to upgrade perdition and all clients to TLS 1.3.
* What exactly did you do (or not do) that was effective (or
ineffective)?
We are using this ARGS string:
IMAP4_FLAGS="-u perdition -g perdition --username_from_database --tcp_keepalive
--timeout 300 --outgoing_port imap --listen_port XXXX --ssl_mode
tls_listen_force --ssl_dh_params_file /etc/perdition/dh2048.pem
--ssl_listen_min_proto_version tlsv1.3"
This works with --ssl_listen_min_proto_version tlsv1.2 but not with tlsv1.3.
* What was the outcome of this action?
The IMAP4 instance of perdition fails to start.
* What outcome did you expect instead?
That instance should run, refusing SSL and TLS up to 1.2. And plaintext.
-- System Information:
Debian Release: 10.11
APT prefers oldstable-updates
APT policy: (500, 'oldstable-updates'), (500, 'oldstable')
Architecture: amd64 (x86_64)
Kernel: Linux 4.19.0-18-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8),
LANGUAGE=en_US.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages perdition depends on:
ii libc6 2.28-10
ii libdb5.3 5.3.28+dfsg1-0.5
ii libgdbm6 1.18.1-4
ii libidn11 1.33-2.2
ii libpam0g 1.3.1-5
ii libpopt0 1.16-12
ii libssl1.1 1.1.1d-0+deb10u7
ii libvanessa-adt1 0.0.9-2
ii libvanessa-logger0 0.0.10-3+b2
ii libvanessa-socket2 0.0.13-1+b2
ii lsb-base 10.2019051400
perdition recommends no packages.
Versions of packages perdition suggests:
pn perdition-ldap <none>
pn perdition-mysql <none>
pn perdition-odbc <none>
pn perdition-postgresql <none>
-- Configuration Files:
/etc/default/perdition changed [not included]
/etc/perdition/popmap changed [not included]
-- debconf-show failed
