29 Jan
2010
29 Jan
'10
9:56 a.m.
On 29.1.2010, at 9.23, Andreas Schulze wrote:
From: Timo Sirainen <tss@iki.fi> Subject: Re: [Dovecot] How do I make dovecot not use sslv2 for pop? Message-ID: <1264724551.22202.139.camel@hurina>
Anyway.. I guess I should do something about this. Not really sure what, though. Timo,
you can simply stop supporting SSLv2. Nobody really needs security known to be insecure.
Yeah. I'm actually more wondering about SSLv3+TLSv1 vs. TLSv1. Apparently disabling SSLv3 isn't a good idea yet? But still, maybe there should be a configuration option for that.. Or maybe not.