Restricting SSL/TLS protocol versions on Dovecot 2.2.22

J Doe general at nativemethods.com
Sun Jul 29 22:02:05 EEST 2018


Hello,

I have a question regarding SSL/TLS settings for Dovecot version 2.2.22.

In: 10-ssl.conf there are two parameters:

    ssl_protocols
    ssl_cipher_list

ssl_protocols is commented with “SSL protocol to use” and ssl_cipher_list is commented with “SSL ciphers to use”.

If I want to disable SSLv3, for example, do I need to use both parameters or will disabling SSLv3 ciphers in
ssl_cipher_list do the same thing ?

So is:

    ssl_cipher_list = !SSLv3

…equivalent to:

    ssl_protocols = !SSLv3
    ssl_cipher_list = !SSLv3

Thanks,

- J


More information about the dovecot mailing list