Hi. On Thursday 13 March 2008, Sam Varshavchik wrote: > Received: from www.courier-mta.com ([216.254.115.190]) by > mail.sourceforge.net with esmtps (SSLv3:AES256-SHA:256) (Exim 4.44) id > 1JZDuV-0008Af-LZ for [email protected]; Tue, 11 Mar 2008 > 16:29:34 -0700 > > I have TLS_PROTOCOL=SSL3 set in courierd
I'm pretty sure that setting this to SSL23 instead (and denying SSL2 as I described) would have made the connection to use TLSv1 (if sourceforge supports it). Sure, my statement is not necessarily valid for GnuTLS but in openssl context, this is fact. So the question is, why do you manually "downgrade" your connection to SSLv3 when you could have used TLSv1? ;-) regards, Bernd -- Math and alcohol don't mix. Don't drink and derive!
signature.asc
Description: This is a digitally signed message part.
------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2008. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/
_______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
