Marking invalid. Looks like this is user error on my behalf.
Default config does _not_ include SSLv2.
default:
tls_cipher_list: TLSv1+HIGH:!aNULL:@STRENGTH
Still mysterious that cyrus can be made to accept SSLv2 connections despite
openssl compile time options.
** Changed in: cyrus-imapd-2.2 (Ubuntu)
Status: New => Invalid
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/904875
Title:
cyrus default config includes insecure SSLv2
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/cyrus-imapd-2.2/+bug/904875/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
