diff options
author | Matthias Andree <matthias.andree@gmx.de> | 2015-01-17 01:15:31 +0100 |
---|---|---|
committer | Matthias Andree <matthias.andree@gmx.de> | 2015-01-26 09:45:24 +0100 |
commit | c72743cf6139d6906337ddeac964eb79f644097e (patch) | |
tree | d3ad37c05dc2c3b1085904039958a510a6dc0a86 /fetchmail-SA-2007-02.txt | |
parent | 07d7fc7b2b84ed36419abf8802b6de29f6e675cc (diff) | |
download | fetchmail-c72743cf6139d6906337ddeac964eb79f644097e.tar.gz fetchmail-c72743cf6139d6906337ddeac964eb79f644097e.tar.bz2 fetchmail-c72743cf6139d6906337ddeac964eb79f644097e.zip |
TLS overhaul, bumping version to 6.4
Removes SSLv2, enables TLSv1.1 and v1.2 more easily,
permits SSLv3 (only if specified) and newer TLSv1.1+ for STLS/STARTTLS.
Only negotiates TLSv1 and newer by default, SSLv3 must now be specified
explicitly, as a consequence of the POODLE attack.
This is meant to be a minimally upgraded version, and cannot be usefully
done as a 6.3.X release.
It is strongly recommended that users review their configuration -
especially --sslproto - per instructions in the NEWS file and manual
page. It has changed semantics and in many cases --sslproto auto or
perhaps --sslproto tls1.2+ should be used now.
Diffstat (limited to 'fetchmail-SA-2007-02.txt')
0 files changed, 0 insertions, 0 deletions