svn commit: r284490 - stable/9

Gregory Neil Shapiro Tue, 16 Jun 2015 20:20:01 -0700

Author: gshapiro
Date: Wed Jun 17 03:19:31 2015
New Revision: 284490
URL: https://svnweb.freebsd.org/changeset/base/284490


Log:
  Add a note regarding the change to sendmail'c default DH parameter size
  for client connections.

Modified:
  stable/9/UPDATING

Modified: stable/9/UPDATING
==============================================================================
--- stable/9/UPDATING   Wed Jun 17 03:12:08 2015        (r284489)
+++ stable/9/UPDATING   Wed Jun 17 03:19:31 2015        (r284490)
@@ -11,6 +11,14 @@ handbook:
 Items affecting the ports and packages system can be found in
 /usr/ports/UPDATING.  Please read that file before running portupgrade.
 
+20150615:
+       The latest version of openssl rejects TLS handshakes with DH
+       parameters below 768 bits.  sendmail releases prior to 8.15.2
+       (not yet released), defaulted to a 512 bit DH parameter setting
+       for client connections.  To improve interoperability, the
+       sendmail default for client connections has been raised to
+       1024 bits.
+
 20140717:
        It is no longer necessary to include the dwarf version in your DEBUG
        options in your kernel config file. The bug that required it to be
_______________________________________________
svn-src-stable-9@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/svn-src-stable-9
To unsubscribe, send any mail to "svn-src-stable-9-unsubscr...@freebsd.org"

svn commit: r284490 - stable/9

Reply via email to