Hi again, On Wed, 15 Oct 2014 20:55:30 +0200, Martin Lambers wrote: > When OpenSSL is used, SSLv3 is now disabled explicitly. For GnuTLS, a > library update should take care of that soon.
With GnuTLS, you might want to use tls_priorities NORMAL:-VERS-SSL3.0 or even better tls_priorities PFS:-VERS-SSL3.0 to disable SSLv3 right now. See http://gnutls.org/manual/html_node/Priority-Strings.html Thinking of it, should we replace the current default priority string "NORMAL" with "PFS"? Or even with "PFS:-VERS-SSL3.0"? Regards, Martin ------------------------------------------------------------------------------ Comprehensive Server Monitoring with Site24x7. Monitor 10 servers for $9/Month. Get alerted through email, SMS, voice calls or mobile push notifications. Take corrective actions from your mobile device. http://p.sf.net/sfu/Zoho _______________________________________________ msmtp-users mailing list msmtp-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/msmtp-users
