thomas
/
sovereign
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

Merge pull request #325 from neuhaus/patch-3 

Postfix: Disable SSLv3 for TLS connections
Alex Payne 10 years ago
parent
4e4c8596d3 ac59435d6e
commit
1c68901438
1 changed files with 4 additions and 0 deletions
Unified View Show Diff Stats
  1. 4
    0
      roles/mailserver/templates/etc_postfix_main.cf.j2

+ 4
- 0
roles/mailserver/templates/etc_postfix_main.cf.j2 View File

36 
 unverified_sender_reject_code = 554
 36 
 unverified_sender_reject_code = 554
37
37
38 
 # TLS parameters
 38 
 # TLS parameters
39 
+smtpd_tls_mandatory_protocols=!SSLv2,!SSLv3
40 
+smtp_tls_mandatory_protocols=!SSLv2,!SSLv3
41 
+smtp_tls_protocols = !SSLv2,!SSLv3
42 
+smtpd_tls_protocols = !SSLv2,!SSLv3
39 
 smtpd_tls_cert_file=/etc/ssl/certs/wildcard_combined.pem
 43 
 smtpd_tls_cert_file=/etc/ssl/certs/wildcard_combined.pem
40 
 smtpd_tls_key_file=/etc/ssl/private/wildcard_private.key
 44 
 smtpd_tls_key_file=/etc/ssl/private/wildcard_private.key
41 
 smtpd_use_tls=yes
 45 
 smtpd_use_tls=yes

Write Preview
Loading…
Cancel
Save