Re: openssl/libssl1 in Debian now blocks offlineimap?

To: debian-devel@lists.debian.org
Subject: Re: openssl/libssl1 in Debian now blocks offlineimap?
From: Bernhard Schmidt <berni@debian.org>
Date: Thu, 24 Aug 2017 12:05:20 +0000 (UTC)
Message-id: <[🔎] onmfe0$qns$1@blaine.gmane.org>
References: <20170814190938.td4vhyq5rqmmxlrw@shelf.conquest> <20170814200540.qunn4exfhwgnubio@roeckx.be> <20170815102826.GA2738@vidovic.ultras.lan> <[🔎] 20170815134905.uzhmjjsdifo6zky5@burischnitzel.preining.info> <[🔎] 20170815150449.tjfsf5g2pp4odv5q@roeckx.be>

Kurt Roeckx <kurt@roeckx.be> wrote:

> Disabling the protocols is the only way I know how to identify
> all the problems. And I would like to encourage everybody to
> contact the other side if things break and get them to upgrade.

There is now #873065 on Postfix which suggests MTAs don't fall back to
plain SMTP if the SSL handshake fails due to disabling of TLSv1.0 and
TLSv1.1. I think this problem will be unsolvable before at least Google
and Microsoft do the same on their inbound servers, forcing everyone to
change configs.

Bernhard

Reply to:

Follow-Ups:
- Re: openssl/libssl1 in Debian now blocks offlineimap?
  - From: Scott Kitterman <debian@kitterman.com>

References:
- Re: openssl/libssl1 in Debian now blocks offlineimap?
  - From: Norbert Preining <norbert@preining.info>
- Re: openssl/libssl1 in Debian now blocks offlineimap?
  - From: Kurt Roeckx <kurt@roeckx.be>

Prev by Date: X facts about Debian - some fact checking and looking for ideas.
Next by Date: Re: openssl/libssl1 in Debian now blocks offlineimap?
Previous by thread: Re: openssl/libssl1 in Debian now blocks offlineimap?
Next by thread: Re: openssl/libssl1 in Debian now blocks offlineimap?
Index(es):
- Date
- Thread