Displaying 1 result from an estimated 1 matches for "ssldb".
Did you mean:
sasldb
2012 Mar 20
1
IMAP and POP3 per SSL
...s in the following C-Code being executed:
SSL_CTX_set_options(ctx, SSL_OP_CIPHER_SERVER_PREFERENCE);
This setting tells OpenSSL not to honor the Ciper Order sent from the client, but prefer it's own configured set of CipherSuites. According to Qualis SSL Labs ( https://www.ssllabs.com/ssldb/index.html ), a webserver configured with this setting is not affected by that BEAST security leak.
Is there a way to implement such a setting into Dovecot, too?
I have created a very quick and dirty solution to avoid being listed on our internal security problem's list.
This patch is for dov...