Date: Thu, 12 Mar 2015 09:38:09 -0500 From: Mark Felder <feld@FreeBSD.org> To: freebsd-security@freebsd.org Subject: Re: sendmail broken by libssl in current Message-ID: <1426171089.1809256.239414225.2EB26D2D@webmail.messagingengine.com> In-Reply-To: <5500DF36.9070904@obluda.cz> References: <54FFE774.50103@freebsd.org> <6BD2AE7F-8EC5-4EBC-A183-E03EC54456BC@vpnc.org> <55005753.3070306@obluda.cz> <550092DD.9030808@freebsd.org> <5500DF36.9070904@obluda.cz>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Mar 11, 2015, at 19:35, Dan Lukes wrote: > Julian Elischer wrote: > >>> Can you say which email servers *other* than unpatched Ironport fail? > > > well my problem is that I don't know what the other ends are running > > exactly, but they are pretty big institution. > > Just side note - you need not to wait for a source patch. Just disable > TLS for those destinations as a instant workaround. > > Users of 8.4/9.3 need to disable TLS to those destinations supporting > TLSv1.2 only (as TLSv1.2 is not supported by sendmail on 8.4/9.3-R), so > you will not be alone with such kind of workaround ;-) > It seems like this is the sort of thing where we shouldn't just give up and accept as the norm. *sigh*
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?1426171089.1809256.239414225.2EB26D2D>