<html><head><meta http-equiv="Content-Type" content="text/html; charset=UTF-8"></head><body><div>2.3.1 does not generate them at all and accepts a static file.</div><div><br></div><div id="composer_signature"><meta http-equiv="Content-Type" content="text/html; charset=UTF-8">---<div>Aki Tuomi</div><div>Dovecot oy</div></div><div><br></div><div style="font-size:100%;color:#000000"><!-- originalMessage --><div>-------- Original message --------</div><div>From: Erik de Waard <erikdewaard@gmail.com> </div><div>Date: 09/05/2018 17:48 (GMT+02:00) </div><div>To: dovecot@dovecot.org </div><div>Subject: possible to disable dh_key/ssl-parameters.dat generation when only using ECDHE ciphers. </div><div><br></div></div><div dir="ltr">Hi,<div><br></div><div>I want to disable dh_key/ssl-parameters.dat entirely since i'm only using ECDHE ciphers.</div><div><br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><br></blockquote><div><div># 2.2.34 (874deae): /etc/dovecot/dovecot.conf</div><div># Pigeonhole version 0.4.22 (22940fb7)</div><div># OS: Linux 4.9.0-6-amd64 x86_64 Debian 9.4 </div><div># Hostname: <a href="http://somehost.com">somehost.com</a></div><div>auth_cache_negative_ttl = 0</div><div>auth_cache_size = 10 M</div><div>auth_cache_ttl = 1 days</div><div>auth_username_chars = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ01234567890.-_@#"</div><div>default_client_limit = 1500</div><div>default_vsz_limit = 600 M</div><div>disable_plaintext_auth = no</div><div>info_log_path = /var/log/<a href="http://mail.log.info">mail.log.info</a></div><div>listen = *</div><div>log_timestamp = "%Y-%m-%d %H:%M:%S "</div><div>mail_debug = yes</div><div>mail_max_userip_connections = 100</div><div>mail_privileged_group = mail</div><div>mmap_disable = yes</div><div>namespace inbox {</div><div> inbox = yes</div><div> location = </div><div> mailbox Drafts {</div><div> special_use = \Drafts</div><div> }</div><div> mailbox Junk {</div><div> special_use = \Junk</div><div> }</div><div> mailbox Sent {</div><div> special_use = \Sent</div><div> }</div><div> mailbox "Sent Messages" {</div><div> special_use = \Sent</div><div> }</div><div> mailbox Trash {</div><div> special_use = \Trash</div><div> }</div><div> prefix = INBOX.</div><div> separator = .</div><div> type = private</div><div>}</div><div>passdb {</div><div> args = /etc/dovecot/dovecot-sql.conf</div><div> driver = sql</div><div>}</div><div>plugin {</div><div> sieve_execute_bin_dir = /etc/dovecot/sieve-executables</div><div> sieve_global_extensions = +vnd.dovecot.execute</div><div> sieve_plugins = sieve_extprograms</div><div>}</div><div>protocols = imap lmtp</div><div>service anvil {</div><div> unix_listener anvil-auth-penalty {</div><div> mode = 0600</div><div> }</div><div>}</div><div>service auth {</div><div> user = root</div><div>}</div><div>service imap-login {</div><div> client_limit = 6000</div><div> process_limit = 4</div><div> process_min_avail = 4</div><div> service_count = 0</div><div> vsz_limit = 600 M</div><div>}</div><div>service imap {</div><div> client_limit = 1</div><div> process_limit = 1024</div><div> service_count = 50</div><div>}</div><div>service lmtp {</div><div> inet_listener lmtp {</div><div> port = 24</div><div> }</div><div>}</div><div>ssl_cert = </etc/dovecot/dovecot.crt</div><div>ssl_cipher_list = ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256</div><div>ssl_key = # hidden, use -P to show it</div><div>ssl_prefer_server_ciphers = yes</div><div>userdb {</div><div> driver = prefetch</div><div>}</div><div>userdb {</div><div> args = /etc/dovecot/dovecot-sql.conf</div><div> driver = sql</div><div>}</div><div>verbose_proctitle = yes</div><div>protocol lmtp {</div><div> mail_plugins = " sieve"</div><div> plugin {</div><div> sieve = ~/filters.sieve</div><div> sieve_after = /etc/dovecot/sieve/after.sieve</div><div> sieve_before = /etc/dovecot/sieve/before.sieve</div><div> }</div><div> userdb {</div><div> args = /etc/dovecot/dovecot-sql-lmtp.conf</div><div> driver = sql</div><div> name = </div><div> }</div><div>}</div></div><div><br></div><div><br></div><div><div><br></div><div><br></div></div></div>
</body></html>