Am 12.11.2012 02:11, schrieb Daniel L. Miller:
On 11/6/2012 12:30 PM, Timo Sirainen wrote:
On 6.11.2012, at 17.26, Ed W wrote:
On 05/11/2012 23:22, Timo Sirainen wrote:
On Mon, 2012-11-05 at 23:40 +0200, Timo Sirainen wrote: This also provides a nice abstraction to OpenSSL, making it again possible to implement other backends like GnuTLS or NSS. (Except login process code doesn't use lib-ssl-iostream yet.) Does libtomcrypt implement enough? It doesn't do SSL, which is all Dovecot cares about.
Can the GnuTLS OpenSSL compatibility layer be used safely?
where is the problem with openssl?
please leave us in peace with gnuTLS and see how it affects OpenVAS / Greenbone Sceurity Assistant on distributions like Fedora the whole year
what about config compatibility like ssl_cipher_list = ALL:!LOW:!MEDIUM:!SSLv2:!MD5:!aNULL:!eNUL:!ADH:!AESGCM:!EXP:HIGH