On Jul 1, 2005, at 11:10, Rich Graves wrote:
There are reasons that SSL went to v3 (and SSH to v2, Kerberos to v5,
etc).
Most are probably of only theoretical interest, but in a very high
security
environment, it's valid to worry about such things. Personally and for
the
Brandeis production servers, I currently don't.
You can disable SSLv2 or specific crypto algorithms at OpenSSL build
time.
I don't know if it's possible to do it at link or run time.
From looking at the documentation for mutt, it appears you can disable
sslv2, sslv3 and tlsv1 each independently. So, from that I assume it's
possible to do at runtime...
- Chris
_______________________________________________
Imap-uw mailing list
Imap-uw@u.washington.edu
https://mailman1.u.washington.edu/mailman/listinfo/imap-uw
