[exim-dev] New backwards-compat items

Top Page
This message is part of the following thread:
Mthe complete thread tree sorted by date
 
 
Delete this message
Reply to this message
Author: Phil Pennock
Date:  
To: exim-dev
Subject: [exim-dev] New backwards-compat items
Adding backwards-compat items:

* OpenSSL loading of tls_dhparams constrained by new option
tls_dh_max_bits

* Are validating tls_require_ciphers at start-up; note that not only
does this affect invalid strings, but also broken binaries which
previously segfaulted during delivery and might fall back to non-TLS
if there was a non-TLS-advertising server in the MX pool, or might
never have delivered to a TLS server.

This latter one is more contentious. If we decide it's too contentious,
we can back out by commenting out one invocation in readconf.c.

-Phil

This message was posted to the following mailing lists:
Exim-dev
Mailing List Info | Nearby Messages		<-Re: [exim-dev] CentOS 5's old openssl and TLS support[exim-dev] Exim 4.80 RC4 uploaded->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)