Thread
:
[SOLVED] Modest cannot receive/send via SSL/TLS
View Single Post
Amboss
2014-11-03 , 21:09
Posts: 237 | Thanked: 502 times | Joined on May 2010 @ Mittelfranken, Germany
#
45
Just some thoughts:
Since both SSL2 and SSL3 are insecure (if not obsolete) what would it take to disable them altogether. With the proposed fix it is made to work, but it leaves some questions.
For instance, if the provider offers both SSLv3 and TLS which one will be choosen. The first in the list or the best? Does it matter if it reads
#define SSL_FLAGS (CAMEL_TCP_STREAM_SSL_ENABLE_SSL2 | CAMEL_TCP_STREAM_SSL_ENABLE_SSL3 | CAMEL_TCP_STREAM_SSL_ENABLE_TLS)
or
#define SSL_FLAGS (CAMEL_TCP_STREAM_SSL_ENABLE_TLS | CAMEL_TCP_STREAM_SSL_ENABLE_SSL2 | CAMEL_TCP_STREAM_SSL_ENABLE_SSL3)
??
Quote & Reply
|
The Following User Says Thank You to Amboss For This Useful Post:
Wikiwide
Amboss
View Public Profile
Send a private message to Amboss
Find all posts by Amboss