Displaying 5 results from an estimated 5 matches for "kpsk".
Did you mean:
kps
2016 Oct 27
2
Bugreport: managesieve-login won't start without a ssl-key
.../spool/postfix/private/dovecot-lmtp {
group = postfix
mode = 0600
user = postfix
}
}
service managesieve-login {
inet_listener sieve {
port = 4190
ssl = yes
}
}
ssl = required
ssl_cert = </etc/ssl/private/imap.toppoint.de.crt
ssl_cipher_list = HIGH::!aNULL:!eNULL:!kRSA:!kPSK:!kSRP:!aDSS:!kECDH:!kDH:!MD5:!SHA1:!RC2:!RC4:!SEED:!IDEA:!DES:!3DES
ssl_dh_parameters_length = 2048
ssl_key = </etc/ssl/private/imap.toppoint.de.pem
ssl_prefer_server_ciphers = yes
ssl_protocols = !SSLv3 !SSLv2
userdb {
driver = passwd
}
protocol lmtp {
mail_plugins = sieve
}
protocol imap {...
2020 Oct 01
3
BUG: _presence_ of valid openssl.cnf Option = 'ServerPreference' causes Dovecot submission relay FAIL: "failed: Failed to initialize SSL: ..."
hi,
On 10/1/20 12:21 AM, JEAN-PAUL CHAPALAIN wrote:
> I had the same problem when migrating from Dovecot V2.2.36 on, Centos-7 to?Dovecot v2.3.8 on Centos-8
My report is specifically/solely about the addition/use of the
Options = ServerPreference
parameter.
I don't see that in your configuration.
Are you using it? In a config using Dovecot's submission proxy?
2020 Oct 01
0
BUG: _presence_ of valid openssl.cnf Option = 'ServerPreference' causes Dovecot submission relay FAIL: "failed: Failed to initialize SSL: ..."
...:
openssl_conf = default_modules
[ default_modules ]
ssl_conf = ssl_module
[ ssl_module ]
system_default = crypto_policy
[ crypto_policy ]
*.include /etc/crypto-policies/back-ends/opensslcnf.config*
And /etc/crypto-policies/back-ends/opensslcnf.config :
CipherString =
@SECLEVEL=2:kEECDH:kRSA:kEDH:kPSK:kDHEPSK:kECDHEPSK:-aDSS:-3DES:!DES:!RC4:!RC2:!IDEA:-SEED:!eNULL:!aNULL:!MD5:-SHA384:-CAMELLIA:-ARIA:-AESCCM8
Ciphersuites =
TLS_AES_256_GCM_SHA384:TLS_CHACHA20_POLY1305_SHA256:TLS_AES_128_GCM_SHA256:TLS_AES_128_CCM_SHA256
MinProtocol = *TLSv1.1*
MaxProtocol = TLSv1.3
Regards
Le jeu. 1 oct. 2020 ?...
2016 Oct 28
0
Bugreport: managesieve-login won't start without a ssl-key
...; protocol, i.e. ManageSieve with
TLS from the start. It doesn't exist by the standard. ManageSieve only
uses the STARTTLS command. Leave out the ssl=yes here.
> }
> ssl = required
> ssl_cert = </etc/ssl/private/imap.toppoint.de.crt
> ssl_cipher_list = HIGH::!aNULL:!eNULL:!kRSA:!kPSK:!kSRP:!aDSS:!kECDH:!kDH:!MD5:!SHA1:!RC2:!RC4:!SEED:!IDEA:!DES:!3DES
> ssl_dh_parameters_length = 2048
> ssl_key = </etc/ssl/private/imap.toppoint.de.pem
> ssl_prefer_server_ciphers = yes
> ssl_protocols = !SSLv3 !SSLv2
> userdb {
> driver = passwd
> }
> protocol lmtp {...
2007 Jul 31
2
Ham Radio s/w and CentOS? {including Echolink}
I am going to present Linux to my ham radio club at some point in the next few
months, and wanted to collect info on ham radio software, including options for
echolink. Our repeater has an echolink connection, thus if I present the
software available for it, it might perk up people's interests more.
It would also be very helpful if the echlink applications offered
proxy/firewall options