Alexander Gretha wrote: > with TLS/SSL_PROTOCOL set to SSL2 the clients having the errors before > can connect ok, but all the others (using firefox) cannot connect any > more because firefox complains that the mail server uses an older, > insecure version of ssl... the 0.56.0 upgrade definitely is not a peace > of cake ...
Much noise was made when Mozilla announced that they were removing support for SSLv2, a couple of years ago. As I understand it, the RFCs have encouraged the deprecation of SSLv2 for more than a decade. Version 2, the original SSL spec, has some fairly serious security problems (such as man in the middle attacks) that are prompting more people to remove support for it, or to disable it by default. I'm curious, what programs are you using that don't support SSLv3 or TLS? It'll save me some work if I can find out if anyone that I support is using such software, and update it before I update Courier. :) ------------------------------------------------------------------------- This SF.net email is sponsored by DB2 Express Download DB2 Express C - the FREE version of DB2 express and take control of your XML. No limits. Just data. Click to get it now. http://sourceforge.net/powerbar/db2/ _______________________________________________ courier-users mailing list [email protected] Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users
