[Dovecot] SSL Ciphers

Timo Sirainen tss at iki.fi
Mon Apr 26 00:37:56 EEST 2004


On Fri, 2004-04-23 at 17:51, John Wentworth wrote:
> I have previously disabled weak ciphers in apache 
> but cannot figure out how to disable the weak ciphers in
> dovecot
> Any help would be appreciated

Currently you'd have to edit src/login-common/ssl-proxy-openssl.c by
hand. Default is #define SSL_CIPHER_LIST "ALL:!LOW". I guess Nessus has
different idea of weak ciphers than OpenSSL. I'll add in TODO that this
should be configurable in config file as well.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
URL: <http://dovecot.org/pipermail/dovecot/attachments/20040426/2b7d4172/attachment-0001.bin>


More information about the dovecot mailing list