Date: Thu, 12 Mar 2015 01:35:02 +0100 From: Dan Lukes <dan@obluda.cz> To: Julian Elischer <julian@freebsd.org> Cc: freebsd security <freebsd-security@freebsd.org>, Paul Hoffman <paul.hoffman@vpnc.org> Subject: Re: sendmail broken by libssl in current Message-ID: <5500DF36.9070904@obluda.cz> In-Reply-To: <550092DD.9030808@freebsd.org> References: <54FFE774.50103@freebsd.org> <6BD2AE7F-8EC5-4EBC-A183-E03EC54456BC@vpnc.org> <55005753.3070306@obluda.cz> <550092DD.9030808@freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Julian Elischer wrote: >>> Can you say which email servers *other* than unpatched Ironport fail? > well my problem is that I don't know what the other ends are running > exactly, but they are pretty big institution. Just side note - you need not to wait for a source patch. Just disable TLS for those destinations as a instant workaround. Users of 8.4/9.3 need to disable TLS to those destinations supporting TLSv1.2 only (as TLSv1.2 is not supported by sendmail on 8.4/9.3-R), so you will not be alone with such kind of workaround ;-) Dan
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5500DF36.9070904>