eras 14/05/12 15:27:43 Added: dovecot-10-ssl.patch Log: Security bump - bug #509954 (Portage version: 2.2.10/cvs/Linux x86_64, signed Manifest commit with key 0x77F1F175586A3B1F)
Revision Changes Path 1.1 net-mail/dovecot/files/dovecot-10-ssl.patch file : http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-mail/dovecot/files/dovecot-10-ssl.patch?rev=1.1&view=markup plain: http://sources.gentoo.org/viewvc.cgi/gentoo-x86/net-mail/dovecot/files/dovecot-10-ssl.patch?rev=1.1&content-type=text/plain Index: dovecot-10-ssl.patch =================================================================== # bug 508552 --- doc/example-config/conf.d/10-ssl.conf 2013-11-24 13:37:39.000000000 +0000 +++ doc/example-config/conf.d/10-ssl.conf 2014-05-12 14:42:26.000000000 +0000 @@ -51,6 +51,15 @@ # SSL ciphers to use #ssl_cipher_list = ALL:!LOW:!SSLv2:!EXP:!aNULL +# ########################################## +# You are strongly encouraged to change the above two settings to +# +#ssl_protocols = !SSLv2 !SSLv3 +#ssl_cipher_list = ALL:!EXPORT:!LOW:!MEDIUM:!aNULL:+RC4:@STRENGTH +# +# if you are not required to support legacy mail clients. +# ########################################## + # Prefer the server's order of ciphers over client's. #ssl_prefer_server_ciphers = no
