Hi Paul,
a fellow Groninger? Then lets try to help ;-)
>From the OSX v10.11 release notes (released 15-8):
* DHE_RSA cipher suites are now disabled by default in Secure
Transport for TLS clients. This may cause a failure to connect to
TLS servers that only support DHE_RSA cipher suites. Applications
that explicitly enable cipher suites using SSLSetEnabledCiphers()
are not affected. Safari may display a “Safari can’t establish a
secure connection to the server” error page. Safari and other
clients of CFNetwork API (NSURLSession, NSURLConnection,
CFHTTPStream, CFSocketStream and Cocoa equivalent) will show a
“CFNetwork SSLHandshake failed” error in Console.
Maybe you can use checktls.com to find out which cipher your site uses.
A very useful site.
If your site uses a DHE-RSA cipher, you may need to change the
tls_cipher_list in your imapd.conf
See
https://developer.apple.com/library/prerelease/mac/releasenotes/General/rn-osx-10.11/
cheers,
Stefan
On 1-9-2015 18:04, Paul van der Vlis wrote:
> Op 01-09-15 om 17:35 schreef Patrick Boutilier:
>
>> What version of Cyrus?
> Really old: 2.2.13
> https://packages.debian.org/squeeze/cyrus-imapd-2.2
>
> With regards,
> Paul van der Vlis.
>
----
Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus
