Re: dovecot, openssl, TLS1.0

To: debian-user@lists.debian.org
Subject: Re: dovecot, openssl, TLS1.0
From: Greg Wooledge <wooledg@eeg.ccf.org>
Date: Mon, 5 Nov 2018 09:15:58 -0500
Message-id: <[🔎] 20181105141558.p2pixsqf44u24lmq@eeg.ccf.org>
Mail-followup-to: debian-user@lists.debian.org
In-reply-to: <[🔎] 20181105123610.quclzhejknupgirc@pikomat.mff.cuni.cz>
References: <[🔎] 20181105123610.quclzhejknupgirc@pikomat.mff.cuni.cz>

On Mon, Nov 05, 2018 at 01:36:10PM +0100, Jan Foniok wrote:
> What is the best way out? Can TLS1.0 and 1.1 be enabled?

TLS 1.0 is insecure and should never be used.  TLS 1.1 is questionable.

If you google something like "tls 1.1 deprecated", you will get plenty
of results telling you why.  The most official one I could find was this
IETF draft memo:

https://tools.ietf.org/id/draft-moriarty-tls-oldversions-diediedie-00.html

Reply to:

References:
- dovecot, openssl, TLS1.0
  - From: Jan Foniok <jan.foniok@pikomat.mff.cuni.cz>

Prev by Date: Re: Archiving content of a directory on a DVD-R.
Next by Date: Re: Archiving content of a directory on a DVD-R.
Previous by thread: dovecot, openssl, TLS1.0
Next by thread: dovecot, openssl, TLS1.0
Index(es):
- Date
- Thread