On 21/06/15 11:33, Ben Caradoc-Davies wrote:
The best solution is still for all servers to use strong keys (world peace, anyone?).
My IMAPS service provider just responded to my request and upgraded to a strong DH temp key. Perhaps world peace is still possible! :-)
$ openssl s_client -connect ub007lcs04.cbr.the-server.net.au:993 [...] Server Temp Key: DH, 2048 bits [...] This also means that I no longer have a weak temp key to test against. Kind regards, -- Ben Caradoc-Davies <[email protected]> Director Transient Software Limited <http://transient.nz/> New Zealand -- To UNSUBSCRIBE, email to [email protected] with a subject of "unsubscribe". Trouble? Contact [email protected]
