On Tue, Mar 19, 2019 at 07:37:37AM +0000, Andrew C Aitchison via Exim-dev wrote:
> > FWIW, Postfix 3.4, released a few weeks ago no longer supports OpenSSL
> > versions prior to 1.0.2.
>
> Not sure from that whether Postfix 3.4 supports OpenSSL 1.0.2 ?
It supports 1.1.x, 1.0.2, and nothing earlier. Older OpenSSL
releases are still supported with Postfix 3.1, 3.2 and 3.3.
My posts are basically lending support to the idea that this may
be a good time for *new* Exim releases to require OpenSSL 1.0.2 or
later. Now OpenSSL 1.0.2 is slated for EOL at the end of this year,
and 1.1.0 (not an LTS release) in September, so one may be tempted
to set the floor at 1.1.1, but that would probably leave some
supported O/S releases behind, that may still be supporting OpenSSL
1.0.2 beyond its upstream EOL.
--
Viktor.
