Bug#913054: [kmail] error:141A318A:SSL routines:tls_process_ske_dhe:dh key too small

To: 913054@bugs.debian.org
Cc: Andy G Wood <agw@bas.ac.uk>
Subject: Bug#913054: [kmail] error:141A318A:SSL routines:tls_process_ske_dhe:dh key too small
From: MAG4 Piemonte <mag4@aruba.it>
Date: Wed, 07 Nov 2018 10:27:12 +0100
Message-id: <[🔎] 7787369.hOstaq7V3M@hipnos>
Reply-to: MAG4 Piemonte <mag4@aruba.it>, 913054@bugs.debian.org
In-reply-to: <[🔎] 10418601.Cn6f17kxHf@hipnos>
References: <[🔎] 10418601.Cn6f17kxHf@hipnos>

Dear maintainer, thanks to this message
https://lists.debian.org/debian-kde/2018/11/msg00001.html
we discover that to workaround the problem it is not necessary to downgrade 
openssl but it is sufficient changing back the defaults in /etc/ssl/
openssl.cnf to previous system wide defaults using:

[system_default_sect]
#MinProtocol = TLSv1.2
#CipherString = DEFAULT@SECLEVEL=2
MinProtocol = None
CipherString = DEFAULT

We also verify that with Thunderbird it is not necessary to change back the 
defaults in /etc/ssl/openssl.cnf ...
Regards!

Guido

Reply to:

References:
- Bug#913054: [kmail] error:141A318A:SSL routines:tls_process_ske_dhe:dh key too small
  - From: MAG4 Piemonte <mag4@aruba.it>

Prev by Date: qtcreator_4.7.2-2_source.changes ACCEPTED into unstable
Next by Date: Processing of extra-cmake-modules_5.51.0-1_source.changes
Previous by thread: Bug#913054: [kmail] error:141A318A:SSL routines:tls_process_ske_dhe:dh key too small
Next by thread: qtserialbus-everywhere-src_5.10.1-1_amd64.changes ACCEPTED into unstable, unstable
Index(es):
- Date
- Thread