Opened 9 years ago
Closed 9 years ago
#6739 closed enhancement (fixed)
postfix-3.0.2
Reported by: | Fernando de Oliveira | Owned by: | Fernando de Oliveira |
---|---|---|---|
Priority: | normal | Milestone: | 7.8 |
Component: | BOOK | Version: | SVN |
Severity: | normal | Keywords: | |
Cc: |
Description
ftp://ftp.porcupine.org/mirrors/postfix-release/official/postfix-3.0.2.tar.gz
http://www.postfix.org/announcements/postfix-3.0.2.html
Postfix stable release 3.0.2 and legacy releases 2.11.6, 2.10.8, and 2.9.14 All supported Postfix releases no longer enable export-grade ciphers, and no longer enable the SSLv2 and SSLv3 protocols. These ciphers and protocols have little if any legitimate use today, and have instead become a vehicle for downgrade attacks. Postfix documentation has been updated; the RELEASE_NOTES give suggestions for how to enable the old ciphers and protocols if your infrastructure requires them. Abandoning deprecated ciphers and protocols does not really improve TLS security without measures to better authenticate remote servers. Secure DNS and TLSA are steps in that direction.
Change History (2)
comment:1 by , 9 years ago
Owner: | changed from | to
---|---|
Status: | new → assigned |
comment:2 by , 9 years ago
Resolution: | → fixed |
---|---|
Status: | assigned → closed |
Note:
See TracTickets
for help on using tickets.
Fixed at r16270.