On Sat, Nov 23, 2013 at 8:27 PM, Emmanuel Dreyfus <m...@netbsd.org> wrote: > Brad Smith <b...@comstyle.com> wrote: > >> Personally I'd like to see an option to be able to control which >> versions are enabled. > > Here it is: > http://ftp.espci.fr/shadow/manu/imapproxy4.patch > > >From README.ssl: > tls_ca_file Path to CA file > tls_ca_path Path to CA directory > tls_cert_file Path to client certificate file > tls_key_file Path to client private key > tls_verify_server Enforce server certificate validation (default is false) > tls_ciphers Specify cipher suite as documented in openssl_ciphers(1) > tls_no_tlsv1 Disable TLSv1.0 > tls_no_tlsv1.1 Disable TLSv1.1 > tls_no_tlsv1.2 Disable TLSv1.2 > force_tls Force TLS usage (default is false) > > There is no option to disable SSLv3: it is always disabled, as previous > versions > of imapproxy did not enable it (it was only able to do TLSv1.0)
Sincere thanks for this. It is in the repository with some small changes, particularly the addition of the configuration options to scripts/imapproxy.conf. Let me know if you find anything amiss. Thanks! -- Paul Lesniewski SquirrelMail Team Please support Open Source Software by donating to SquirrelMail! http://squirrelmail.org/donate_paul_lesniewski.php ------------------------------------------------------------------------------ CenturyLink Cloud: The Leader in Enterprise Cloud Services. Learn Why More Businesses Are Choosing CenturyLink Cloud For Critical Workloads, Development Environments & Everything In Between. Get a Quote or Start a Free Trial Today. http://pubads.g.doubleclick.net/gampad/clk?id=119420431&iu=/4140/ostg.clktrk ----- squirrelmail-imapproxy mailing list Posting guidelines: http://squirrelmail.org/postingguidelines List address: squirrelmail-imapproxy@lists.sourceforge.net List archives: http://news.gmane.org/gmane.mail.squirrelmail.imapproxy List info (subscribe/unsubscribe/change options): https://lists.sourceforge.net/lists/listinfo/squirrelmail-imapproxy
