/[smeserver]/rpms/e-smith-pop3/sme9/e-smith-pop3-2.4.0-ssl_proto_from_db.patch
ViewVC logotype

Contents of /rpms/e-smith-pop3/sme9/e-smith-pop3-2.4.0-ssl_proto_from_db.patch

Parent Directory Parent Directory | Revision Log Revision Log | View Revision Graph Revision Graph

Revision 1.1 - (show annotations) (download)
Thu Jan 7 17:40:33 2016 UTC (8 years, 4 months ago) by vip-ire
Branch: MAIN
CVS Tags: e-smith-pop3-2_4_0-8_el6_sme, e-smith-pop3-2_4_0-5_el6_sme, e-smith-pop3-2_4_0-6_el6_sme, e-smith-pop3-2_4_0-7_el6_sme, HEAD 
* Thu Jan 7 2016 Daniel Berteaud <daniel@firewall-services.com> 2.4.0-5.sme
- Allow setting SSL protocols from DB (and set TLSv1 back to enabled
  on a default install) [SME: 9175]
1 diff -Nur e-smith-pop3-2.4.0/root/etc/e-smith/templates/var/service/pop3s/stunnel.conf/10ssl e-smith-pop3-2.4.0_bz9169/root/etc/e-smith/templates/var/service/pop3s/stunnel.conf/10ssl
2 --- e-smith-pop3-2.4.0/root/etc/e-smith/templates/var/service/pop3s/stunnel.conf/10ssl 2016-01-07 18:36:50.553778039 +0100
3 +++ e-smith-pop3-2.4.0_bz9169/root/etc/e-smith/templates/var/service/pop3s/stunnel.conf/10ssl 2016-01-07 18:38:01.045776074 +0100
4 @@ -1,6 +1,11 @@
5 cert = /service/imap/ssl/imapd.pem
6 sslVersion = all
7 -options = NO_SSLv2
8 -options = NO_SSLv3
9 -options = NO_TLSv1
10 +{
11 +
12 +$OUT .= "# SSL protocols can be set with DB props SSLv2, SSLv3 and TLSv1\n";
13 +$OUT .= "options = NO_SSLv2\n" unless ($pop3s{SSLv2} || 'disabled') eq 'enabled';
14 +$OUT .= "options = NO_SSLv3\n" unless ($pop3s{SSLv3} || 'disabled') eq 'enabled';
15 +$OUT .= "options = NO_TLSv1\n" unless ($pop3s{TLSv1} || 'enabled') eq 'enabled';
16 +
17 +}
18 fips = no
admin@koozali.org
 ViewVC Help
Powered by ViewVC 1.2.1 RSS 2.0 feed