Commit 29e299fe authored by Till Brehm's avatar Till Brehm

Add protection against Poodle attacks in Dovecot 2 and Postfix.

parent 53124ed9
......@@ -6,6 +6,7 @@ log_timestamp = "%Y-%m-%d %H:%M:%S "
mail_privileged_group = vmail
ssl_cert = </etc/postfix/smtpd.cert
ssl_key = </etc/postfix/smtpd.key
ssl_protocols = !SSLv2 !SSLv3
passdb {
args = /etc/dovecot/dovecot-sql.conf
driver = sql
......
......@@ -7,6 +7,7 @@ mail_privileged_group = vmail
postmaster_address = postmaster@example.com
ssl_cert = </etc/postfix/smtpd.cert
ssl_key = </etc/postfix/smtpd.key
ssl_protocols = !SSLv2 !SSLv3
passdb {
args = /etc/dovecot/dovecot-sql.conf
driver = sql
......
......@@ -31,4 +31,5 @@ mime_header_checks = regexp:{config_dir}/mime_header_checks
nested_header_checks = regexp:{config_dir}/nested_header_checks
body_checks = regexp:{config_dir}/body_checks
owner_request_special = no
smtp_tls_security_level = may
\ No newline at end of file
smtp_tls_security_level = may
smtpd_tls_mandatory_protocols=!SSLv2, !SSLv3
\ No newline at end of file
......@@ -6,6 +6,7 @@ log_timestamp = "%Y-%m-%d %H:%M:%S "
mail_privileged_group = vmail
ssl_cert = </etc/postfix/smtpd.cert
ssl_key = </etc/postfix/smtpd.key
ssl_protocols = !SSLv2 !SSLv3
passdb {
args = /etc/dovecot-sql.conf
driver = sql
......
......@@ -28,4 +28,5 @@ mime_header_checks = regexp:{config_dir}/mime_header_checks
nested_header_checks = regexp:{config_dir}/nested_header_checks
body_checks = regexp:{config_dir}/body_checks
inet_interfaces = all
smtp_tls_security_level = may
\ No newline at end of file
smtp_tls_security_level = may
smtpd_tls_mandatory_protocols=!SSLv2, !SSLv3
\ No newline at end of file
......@@ -28,4 +28,5 @@ mime_header_checks = regexp:{config_dir}/mime_header_checks
nested_header_checks = regexp:{config_dir}/nested_header_checks
body_checks = regexp:{config_dir}/body_checks
inet_interfaces = all
smtp_tls_security_level = may
\ No newline at end of file
smtp_tls_security_level = may
smtpd_tls_mandatory_protocols=!SSLv2, !SSLv3
\ No newline at end of file
......@@ -6,6 +6,7 @@ log_timestamp = "%Y-%m-%d %H:%M:%S "
mail_privileged_group = vmail
ssl_cert = </etc/postfix/smtpd.cert
ssl_key = </etc/postfix/smtpd.key
ssl_protocols = !SSLv2 !SSLv3
passdb {
args = /etc/dovecot/dovecot-sql.conf
driver = sql
......
......@@ -30,4 +30,5 @@ mime_header_checks = regexp:{config_dir}/mime_header_checks
nested_header_checks = regexp:{config_dir}/nested_header_checks
body_checks = regexp:{config_dir}/body_checks
inet_interfaces = all
smtp_tls_security_level = may
\ No newline at end of file
smtp_tls_security_level = may
smtpd_tls_mandatory_protocols=!SSLv2, !SSLv3
\ No newline at end of file
Markdown is supported
0%
or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment