Postfix does not show up in trusty-proposed.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to postfix in Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early errors after openssl security update
To manage
Try this, it works for me:
apt-get install postfix/precise-proposed
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to postfix in Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early errors after openssl security
That worked and lost connection after STARTTLS does not appear any
more.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to postfix in Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early errors after openssl
This issue should not affect trusty as it has the fix from upstream.
Did you have the problem/test the fix on trusty or precise?
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to postfix in Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Precise
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to postfix in Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early errors after openssl security update
To manage notifications about this bug go to:
The verification of the Stable Release Update for postfix has completed
successfully and the package has now been released to -updates.
Subsequently, the Ubuntu Stable Release Updates Team is being
unsubscribed and will not receive messages about this bug report. In
the event that you encounter a
This bug was fixed in the package postfix - 2.9.6-1~12.04.2
---
postfix (2.9.6-1~12.04.2) precise; urgency=medium
* src/tls/tls_server.c: disable session tickets to fix a compatibility
issue with the openssl version in Ubuntu 12.04. (LP: #1356843)
-- Marc Deslauriers
There also is an issue with the openssl package in Lucid, which was worked
around with the postfix fix.
Adding openssl to this bug since it's better if we fix both.
** Also affects: openssl (Ubuntu)
Importance: Undecided
Status: New
** Also affects: openssl (Ubuntu Lucid)
This bug was fixed in the package openssl - 0.9.8k-7ubuntu8.21
---
openssl (0.9.8k-7ubuntu8.21) lucid-security; urgency=medium
* SECURITY UPDATE: Properly fix stateless session support (LP: #1356843)
- fixes regression introduced with fix_renegotiation.patch.
-
This issue should not affect trusty as it has the fix from upstream.
Did you have the problem/test the fix on trusty or precise?
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs
Precise
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early errors after openssl security update
To manage notifications about this bug go to:
The verification of the Stable Release Update for postfix has completed
successfully and the package has now been released to -updates.
Subsequently, the Ubuntu Stable Release Updates Team is being
unsubscribed and will not receive messages about this bug report. In
the event that you encounter a
This bug was fixed in the package postfix - 2.9.6-1~12.04.2
---
postfix (2.9.6-1~12.04.2) precise; urgency=medium
* src/tls/tls_server.c: disable session tickets to fix a compatibility
issue with the openssl version in Ubuntu 12.04. (LP: #1356843)
-- Marc Deslauriers
There also is an issue with the openssl package in Lucid, which was worked
around with the postfix fix.
Adding openssl to this bug since it's better if we fix both.
** Also affects: openssl (Ubuntu)
Importance: Undecided
Status: New
** Also affects: openssl (Ubuntu Lucid)
This bug was fixed in the package openssl - 0.9.8k-7ubuntu8.21
---
openssl (0.9.8k-7ubuntu8.21) lucid-security; urgency=medium
* SECURITY UPDATE: Properly fix stateless session support (LP: #1356843)
- fixes regression introduced with fix_renegotiation.patch.
-
Postfix does not show up in trusty-proposed.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early errors after openssl security update
To manage notifications about this
Try this, it works for me:
apt-get install postfix/precise-proposed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early errors after openssl security update
To manage
That worked and lost connection after STARTTLS does not appear any
more.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early errors after openssl security update
To
OK, it turns out there is an incompatibility between the postfix package
in precise and the version of openssl in precise.
This was fixed in postfix 2.10.2 by the following change:
20130616
TLS Performance: the Postfix SMTP server TLS session cache
was ineffective because recent
** Patch added: postfix_2.9.6-1~12.04.2.debdiff
https://bugs.launchpad.net/ubuntu/+source/postfix/+bug/1356843/+attachment/4178779/+files/postfix_2.9.6-1%7E12.04.2.debdiff
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to postfix in
** Summary changed:
- ccs received early
+ ccs received early errors after openssl security update
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to postfix in Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early
I've uploaded a package for precise-proposed for processing by the SRU
team.
** Description changed:
+ SRU request:
+
+ [Impact]
+
+ The CVE-2014-0224 update for openssl will now reject CCS messages when
+ they are received before encryption is negotiated. This has cause an
+ issue for certain
Hello Tim, or anyone else affected,
Accepted into trusty-proposed. The package will build now and be
available in a few hours in the -proposed repository.
Please help us by testing this new package. See
https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to
enable and use
** Branch linked: lp:ubuntu/precise-proposed/postfix
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to postfix in Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early errors after openssl security update
To
I have reproduced this issue. It looks like something may be wrong with
openssl in Ubuntu 12.04.
Attached is a packet capture that shows 12.04 sending a CCS before a
Server Key Exchange for some reason.
** Attachment added: problem.pcap
Actually, I believe I'm reading that wrong, disregard my last comment.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early
To manage notifications about this bug go to:
** Patch added: postfix_2.9.6-1~12.04.2.debdiff
https://bugs.launchpad.net/ubuntu/+source/postfix/+bug/1356843/+attachment/4178779/+files/postfix_2.9.6-1%7E12.04.2.debdiff
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
OK, it turns out there is an incompatibility between the postfix package
in precise and the version of openssl in precise.
This was fixed in postfix 2.10.2 by the following change:
20130616
TLS Performance: the Postfix SMTP server TLS session cache
was ineffective because recent
** Summary changed:
- ccs received early
+ ccs received early errors after openssl security update
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early errors after
I've uploaded a package for precise-proposed for processing by the SRU
team.
** Description changed:
+ SRU request:
+
+ [Impact]
+
+ The CVE-2014-0224 update for openssl will now reject CCS messages when
+ they are received before encryption is negotiated. This has cause an
+ issue for certain
Hello Tim, or anyone else affected,
Accepted into trusty-proposed. The package will build now and be
available in a few hours in the -proposed repository.
Please help us by testing this new package. See
https://wiki.ubuntu.com/Testing/EnableProposed for documentation how to
enable and use
** Branch linked: lp:ubuntu/precise-proposed/postfix
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early errors after openssl security update
To manage notifications
So from the irc discussion:
two servers, one Ubuntu 10.04, and one Ubuntu 12.04. Both are using
postfix. The 12.04 server is running postfix 2.9.6-1~12.04.1.
10.04 is running openssl 0.9.8k-7ubuntu8.20 and 12.04 is running openssl
1.0.1-4ubuntu5.17.
The 10.04 is sending mail to the 12.04
The 10.04 server is running postfix 2.7.0-1ubuntu0.2
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1356843
Title:
ccs received early
To manage notifications about this bug go to:
correct so far.
I want to add, when you have configured postfix like this:
smtp_tls_security_level=may
mails will be transported unencrypted.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1356843
35 matches
Mail list logo