Date: Mon, 15 Jun 2015 15:36:10 +0000 (GMT) From: jenkins-admin@freebsd.org To: jenkins-admin@FreeBSD.org, freebsd-stable@FreeBSD.org, freebsd-i386@FreeBSD.org Subject: $PROJECT_NAME - Build #$BUILD_NUMBER - $BUILD_STATUS Message-ID: <567034783.1.1434382572553.JavaMail.jenkins@jenkins-9.freebsd.org>
next in thread | raw e-mail | index | archive | help
$PROJECT_NAME - Build #$BUILD_NUMBER - $BUILD_STATUS: Check console output at $BUILD_URL to view the results. From owner-freebsd-stable@FreeBSD.ORG Mon Jun 15 16:49:32 2015 Return-Path: <owner-freebsd-stable@FreeBSD.ORG> Delivered-To: freebsd-stable@hub.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 75E31831 for <freebsd-stable@hub.freebsd.org>; Mon, 15 Jun 2015 16:49:32 +0000 (UTC) (envelope-from kob6558@gmail.com) Received: from mail-oi0-x22d.google.com (mail-oi0-x22d.google.com [IPv6:2607:f8b0:4003:c06::22d]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 34C63EB4 for <freebsd-stable@freebsd.org>; Mon, 15 Jun 2015 16:49:32 +0000 (UTC) (envelope-from kob6558@gmail.com) Received: by oial131 with SMTP id l131so29810093oia.3 for <freebsd-stable@freebsd.org>; Mon, 15 Jun 2015 09:49:31 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=mime-version:sender:in-reply-to:references:date:message-id:subject :from:to:cc:content-type; bh=IPy+SzMRFmNMnTPybXnsavLMWDjs0+rfsMGMTyOCc8g=; b=nAM7EtZPgPROz2/2YMl5V2Qejn2LT+L6faqaR4kpgLXocd/pi2Pk/fy/qP/veHGTHk U4Hfbqs/ipZ6haFhtK082UxXrk0t3hdb3Fq9oEfNzcmeL+v7p/Y1miMEI+sAXAdkeWmq UETG03oVD+3fc/JtCT2WS0rYmaSjqvRRdRtZpDwxqucdkpSxZDQ18Ni9Bs2McT+SQIwh bS282ye7hoajsyl2DutaIoF3NgIC0nYnOROzqAJHXvw8UrwKFO61SVBeyWgU6+qznD+3 Wn5QvzTuD0Zxec0bfdX9C66loQ+x07lV/Cu3v+SBoG7tHwZEtnYnWwCL/k7rMtcVXYho +Bvg== MIME-Version: 1.0 X-Received: by 10.202.188.139 with SMTP id m133mr23431656oif.73.1434386971315; Mon, 15 Jun 2015 09:49:31 -0700 (PDT) Sender: kob6558@gmail.com Received: by 10.202.221.69 with HTTP; Mon, 15 Jun 2015 09:49:31 -0700 (PDT) In-Reply-To: <alpine.BSF.2.20.1506150816130.853@Ace.nina.org> References: <alpine.BSF.2.20.1506141014130.852@Ace.nina.org> <20150614165507.GD95564@minime.local> <alpine.BSF.2.20.1506141333131.852@Ace.nina.org> <20150614180142.GE95564@minime.local> <alpine.BSF.2.20.1506141952140.853@Ace.nina.org> <20150615013517.GA19755@minime.local> <alpine.BSF.2.20.1506142236490.853@Ace.nina.org> <20150615032333.GE21822@minime.local> <alpine.BSF.2.20.1506150816130.853@Ace.nina.org> Date: Mon, 15 Jun 2015 09:49:31 -0700 X-Google-Sender-Auth: L9u9XsXr80IHdP1Srh5aC0y5vps Message-ID: <CAN6yY1t=-WA6rCzVTecYVUtD54EOhBv55XqN_5eEK9Kf_nvPsA@mail.gmail.com> Subject: Re: Sendmail problem after upgrade to r284296 From: Kevin Oberman <rkoberman@gmail.com> To: Frank Seltzer <frank_s@bellsouth.net> Cc: Gregory Shapiro <gshapiro@gshapiro.net>, FreeBSD-STABLE Mailing List <freebsd-stable@freebsd.org> Content-Type: text/plain; charset=UTF-8 X-Content-Filtered-By: Mailman/MimeDel 2.1.20 X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.20 Precedence: list List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org> List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-stable>, <mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe> List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable/>; List-Post: <mailto:freebsd-stable@freebsd.org> List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help> List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, <mailto:freebsd-stable-request@freebsd.org?subject=subscribe> X-List-Received-Date: Mon, 15 Jun 2015 16:49:32 -0000 On Mon, Jun 15, 2015 at 5:22 AM, Frank Seltzer <frank_s@bellsouth.net> wrote: > On Sun, 14 Jun 2015, Gregory Shapiro wrote: > > I created it per your instructions. See above about it not existing >>> previously. >>> >> >> Oh, sorry for the confusion. Seems an emergency patch is in order to >> change the default. >> >> Would you be willing to test this patch (apply, build, install, remove >> dh.params file, and restart)? >> >> The patch changes the client and server default to 2048 (previous 512 and >> 1024) to help mitigate LogJam/WeakDH. >> >> Index: src/tls.c >> =================================================================== >> --- src/tls.c (revision 284402) >> +++ src/tls.c (working copy) >> @@ -676,8 +676,8 @@ >> } >> if (dhparam == NULL) >> { >> - dhparam = srv ? "1" : "5"; >> - req |= (srv ? TLS_I_DH1024 : TLS_I_DH512); >> + dhparam = "2"; >> + req |= TLS_I_DH2048; >> } >> else if (*dhparam == '/') >> { >> > > Do you mean just build and install sendmail or world and kernel? I can do > world and kernel if you want me to, it only takes about 2 hours to build > world and 20 minutes to build the kernel so it's no big deal. I'll need > instruction on how to patch the file though, I've never done it before. > No meed to rebuild the kernel (this is a patch to sendmail and is not tied to the kernel in any way) or world. Just rebuild sendmail. # cd /usr/src/contrib/sendmail # patch < PATCHFILE (or edit the file by hand) # cd /usr/src/usr.sbin/sendmail # make obj # make clean # make # make install That should do it. -- Kevin Oberman, Network Engineer, Retired E-mail: rkoberman@gmail.com
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?567034783.1.1434382572553.JavaMail.jenkins>