Cristian Sava writes:
I don't see any mention that glibc-2.25 has disabled SSLV3 and
glibc.spec does not seem to disable it. Am I missing something?
Maybe that's because glibc don't give a fig about SSL.
I really haven't been paying much attention, but I must've been out of town
when glibc
On 10/05/17 10:45, Samuel Sieb wrote:
> On 10/04/2017 04:15 PM, Nelson Crosby wrote:
>> Because Legacy Software, I need to be able to support SSLv3 on my
>> Postfix server. From what I can figure, however, this is disabled
>> in the SSL library itself, as I still cannot get a successful
>> handshak
On Thu, 2017-10-05 at 18:46 +1300, Nelson Crosby wrote:
> ... However, with the following in
> `/etc/postfix/main.cf`:
>
> smtpd_tls_mandatory_protocols = !SSLv2
> smtpd_tls_protocols = !SSLv2
>
> I can run `postconf -d` and get this output:
>
> smtpd_tls_mandatory_protocols = !SSLv
On Thu, Oct 05, 2017 at 06:46:10PM +1300, Nelson Crosby wrote:
> On 05/10/17 15:45, Samuel Sieb wrote:
...
>
> It *has* been suggested to me that Postfix might be inserting `!SSLv3`
> because
> OpenSSL doesn't have that support compiled in. I think this might not be the
> case, as I can set `smtpd
On 05/10/17 15:45, Samuel Sieb wrote:
Just speculating, but if SSLv3 is disabled by default in the library,
this is not likely to work. What happens if you put SSLv3 on that
line instead?
The default is:
smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3
Which indicates that SSLv2 and SSLv3 a
On 10/04/2017 04:15 PM, Nelson Crosby wrote:
Because Legacy Software, I need to be able to support SSLv3 on my
Postfix server. From what I can figure, however, this is disabled
in the SSL library itself, as I still cannot get a successful
handshake with the following configuration line, which see
On 10/05/17 07:15, Nelson Crosby wrote:
> Because Legacy Software, I need to be able to support SSLv3 on my
> Postfix server. From what I can figure, however, this is disabled
> in the SSL library itself, as I still cannot get a successful
> handshake with the following configuration line, which se
Hi all.
Because Legacy Software, I need to be able to support SSLv3 on my
Postfix server. From what I can figure, however, this is disabled
in the SSL library itself, as I still cannot get a successful
handshake with the following configuration line, which seems to me
like it should be enough to e
