Comment 0 for bug 1950116
Revision history for this message
| Haw Loeung (hloeung) wrote Disable older SSL/TLS protocols | #0 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
bbfa235
demo site
(Get the code!)
Hi,
Noticed tlsmon picking up that services deployed using the SMTP relay charm have TLS1.0 and TLS1.1 still enabled. We should disable this by default and perhaps a charm option with a big fat warning to override it.
From:
| smtpd_tls_protocols = !SSLv2 !SSLv3
To:
| smtpd_tls_protocols = >=TLSv1.2