Bug#769279: Bug#769046: inn2: Allow for better TLS configurability

On Thu, 2014-11-20 at 22:10 +, Jonathan Wiltshire wrote: [...] On Wed, Nov 12, 2014 at 01:23:03PM +0100, Marco d'Itri wrote: clone 769046 -1 reassign -1 release.debian.org block 769046 by -1 thanks Can I merge this for jessie? Yes. Any news on that? Regards, Adam -- To

Bug#769279: Bug#769046: inn2: Allow for better TLS configurability

Control: retitle -1 (pre-approval) unblock: inn2 Control: reassign -1 release.debian.org Control: tag -1 confirmed On Wed, Nov 12, 2014 at 01:23:03PM +0100, Marco d'Itri wrote: clone 769046 -1 reassign -1 release.debian.org block 769046 by -1 thanks Can I merge this for jessie? Yes. --

Bug#769046: inn2: Allow for better TLS configurability

On Wed, November 12, 2014 12:55, Marco d'Itri wrote: Can I merge this for jessie? I'd strongly prefer if we could indeed merge this for jessie. INN, at the moment, supports TLS connections to nnrpd, but does not allow any configuration besides the certificate and key. +=item Itlsprotocols

Bug#769046: inn2: Allow for better TLS configurability

On Nov 12, Thijs Kinkhorst th...@debian.org wrote: Can you remove SSLv3 from the default list? I do not know the implications wrt clients support. Christian, did you do any tests? +=item Itlscompression +Whether to enable or disable TLS compression support (boolean). The +default is true.

Bug#769046: inn2: Allow for better TLS configurability

On Wed, November 12, 2014 14:29, Marco d'Itri wrote: On Nov 12, Thijs Kinkhorst th...@debian.org wrote: Can you remove SSLv3 from the default list? I do not know the implications wrt clients support. Christian, did you do any tests? +=item Itlscompression +Whether to enable or disable

Bug#769046: inn2: Allow for better TLS configurability

On Wed, Nov 12, 2014 at 02:29:07PM +0100, Marco d'Itri wrote: On Nov 12, Thijs Kinkhorst th...@debian.org wrote: Can you remove SSLv3 from the default list? I do not know the implications wrt clients support. Christian, did you do any tests? Not many, just with icedove and openssl

Bug#769046: inn2: Allow for better TLS configurability

Le 12.11.2014 13:31, Thijs Kinkhorst a écrit : On Wed, November 12, 2014 12:55, Marco d'Itri wrote: Can I merge this for jessie? I'd strongly prefer if we could indeed merge this for jessie. Please use r9745 in SVN: https://inn.eyrie.org/trac/changeset/9745 (The name of the

Bug#769046: inn2: Allow for better TLS configurability

Source: inn2 Severity: wishlist Tags: patch Dear Maintainer, INN, at the moment, supports TLS connections to nnrpd, but does not allow any configuration besides the certificate and key. This means that Wheezy's nnrpd is currently susceptible to the CRIME (because TLS compression is on) and