search for: ssltls

...> https://mariadb.com/kb/en/library/securing-connections-for-client-and-server/ > > But but but... > > TLSv1.2 is not a cipher, it's a protocol. > > Maria DB docs say the settings excepts a list of ciphers or a protocol > name: > > https://mariadb.com/kb/en/library/ssltls-system-variables/#ssl_cipher > > In in other software it's common to have two distinct settings, one > for protocol and one a cipher "pattern". > > Maybe you could try something like this: > > kECDHE+CHACHA20:kECDHE+AESGCM > > ChaCha / Poly and AES GCM are T...

I have a new CentOS 7.4 (recently upgraded to 7.5) system that I have been struggling with in configuring vsftpd for FTPS Implicit (port 990). (The latest instructions I've used are at: https://www.unixmen.com/configure-vsftpd-ssltls-centos-7/) Using Filezilla client, I get: Error: GnuTLS error -15: An unexpected TLS packet was received. Error: Could not connect to server Using Core FTP LE: SL/TLS error - 0, SSL error - 1, error:00000001:lib(0):func(0):reason(1) SSL Connection not established Usin...

On 5/31/2018 8:01 AM, Frank M. Ramaekers wrote: > I have a new CentOS 7.4 (recently upgraded to 7.5) system that I have been struggling with in configuring vsftpd for FTPS Implicit (port 990). > (The latest instructions I've used are at:https://www.unixmen.com/configure-vsftpd-ssltls-centos-7/) Here's what I'm using. The tutorial site I used is currently down with a bandwidth exceeded warning, so I guess it must be quite popular. I'm using LetsEncrypt certificates. My site domain is replaced with example.com. Use your own domain name there as registered with Let...

Hello, Our "it-security" department asked me about Qualys warnings like -> SSL/TLS Compression Algorithm Information Leakage Vulnerability As far as I learned it's compression inside ssl. postfix-2.11 knows 'tls_ssl_options = no_compression' ( see http://www.postfix.org/postconf.5.html#tls_ssl_options ) is the something comparable in dovecot too? Looks like most

...//mariadb.com/kb/en/library/create-user/ > https://mariadb.com/kb/en/library/securing-connections-for-client-and-server/ But but but... TLSv1.2 is not a cipher, it's a protocol. Maria DB docs say the settings excepts a list of ciphers or a protocol name: https://mariadb.com/kb/en/library/ssltls-system-variables/#ssl_cipher In in other software it's common to have two distinct settings, one for protocol and one a cipher "pattern". Maybe you could try something like this: kECDHE+CHACHA20:kECDHE+AESGCM ChaCha / Poly and AES GCM are TLS 1.2 + only ciphers. This will not inc...

...Really strange though! I checked for any obvious differences between the certificates and private keys, but couldn't find any. So my solution will be to use certbot instead of dehydrated... :-/ Worst thing is, that a Microsoft Blog article (https://blogs.msdn.microsoft.com/kaushal/2012/10/05/ssltls-alert-protocol-the-alert-codes/) led me to the right direction.... ;-) -- 42 bad_certificate "There is a problem with the certificate, for example, a certificate is corrupt, or a certificate contains signatures that cannot be verified." -- Peace Bastian Am 17.02.2017 um 21:58 schrieb Ak...

Hey Robert, thanks for your reply. Am 17.02.2017 um 19:28 schrieb Robert L Mathews: > Looking at your dovecot -n, you're using two different files here: > > ssl_cert = </etc/ssl/sebode-online.de/chain.pem > ssl_key = </etc/ssl/sebode-online.de/key.pem > > Are you sure these two files match, and contain the right things in the > right order? > Yes,

I currently use Ubuntu 20.04 with Dovecot 2.3.7.2 and OpenSSL 1.1.1f. A few months ago there was an update to all these systems and since then I've had to talk W7 and old Mac clients through disabling ports 993/995 with TLS enabled back to ports 143/110 without SSL or they could not pick up email. Thunderbird users (ie; me) were unaffected. Could anyone share a set of port 993/995 SSL