Re: Problems with port 993 (SSL)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Hi Paul,

a fellow Groninger? Then lets try to help ;-)

From the OSX v10.11 release notes (released 15-8):
  • DHE_RSA cipher suites are now disabled by default in Secure Transport for TLS clients. This may cause a failure to connect to TLS servers that only support DHE_RSA cipher suites. Applications that explicitly enable cipher suites using SSLSetEnabledCiphers() are not affected. Safari may display a “Safari can’t establish a secure connection to the server” error page. Safari and other clients of CFNetwork API (NSURLSession, NSURLConnection, CFHTTPStream, CFSocketStream and Cocoa equivalent) will show a “CFNetwork SSLHandshake failed” error in Console.

Maybe you can use checktls.com to find out which cipher your site uses. A very useful site.
If your site uses a DHE-RSA cipher, you may need to change the tls_cipher_list in your imapd.conf

See https://developer.apple.com/library/prerelease/mac/releasenotes/General/rn-osx-10.11/

cheers,
Stefan



On 1-9-2015 18:04, Paul van der Vlis wrote:
Op 01-09-15 om 17:35 schreef Patrick Boutilier:


What version of Cyrus?

Really old:  2.2.13
https://packages.debian.org/squeeze/cyrus-imapd-2.2

With regards,
Paul van der Vlis.



----
Cyrus Home Page: http://www.cyrusimap.org/
List Archives/Info: http://lists.andrew.cmu.edu/pipermail/info-cyrus/
To Unsubscribe:
https://lists.andrew.cmu.edu/mailman/listinfo/info-cyrus
[Index of Archives]     [Cyrus SASL]     [Squirrel Mail]     [Asterisk PBX]     [Video For Linux]     [Photo]     [Yosemite News]     [gtk]     [KDE]     [Gimp on Windows]     [Steve's Art]

  Powered by Linux