Explorar el Código

Postfix: Disable SSLv2 and SSLv3 for mandatory TLS connections

Postfix: Disable SSLv2 and SSLv3 for 'mandatory SSL' mode connections to completely mitigate the POODLE issue.
Sven Neuhaus hace 10 años
padre
commit
f338b1e15d
Se han modificado 1 ficheros con 2 adiciones y 0 borrados
  1. 2
    0
      roles/mailserver/templates/etc_postfix_main.cf.j2

+ 2
- 0
roles/mailserver/templates/etc_postfix_main.cf.j2 Ver fichero

@@ -36,6 +36,8 @@ unverified_recipient_reject_code = 554
36 36
 unverified_sender_reject_code = 554
37 37
 
38 38
 # TLS parameters
39
+smtpd_tls_mandatory_protocols=!SSLv2,!SSLv3
40
+smtp_tls_mandatory_protocols=!SSLv2,!SSLv3
39 41
 smtpd_tls_cert_file=/etc/ssl/certs/wildcard_combined.pem
40 42
 smtpd_tls_key_file=/etc/ssl/private/wildcard_private.key
41 43
 smtpd_use_tls=yes

Loading…
Cancelar
Guardar