On Sat, Oct 13, 2018, at 10:41 AM, Viktor Dukhovni wrote: > As yet, I see no compelling reason to disable TLS 1.0 in SMTP. Noted. > What you can and should now disable is SSLv2 and SSLv3, which Postfix > now disables by default. Already done. Ironically, FinCo's online 'security/privacy' missive crows about their commitment to ensuring "Email Security", their commitment to protecting their websites with "SSL3", and that users should look for "SSL Secured (128 Bit)." in their cert info. Sigh. Whatchagonnado?
- Are sha1 & TLSv1 fully deprecated wrt mail, and time ... pg151
- Re: Are sha1 & TLSv1 fully deprecated wrt mail, ... Scott Kitterman
- Re: Are sha1 & TLSv1 fully deprecated wrt ma... pg151
- Re: Are sha1 & TLSv1 fully deprecated wr... Peter
- Re: Are sha1 & TLSv1 fully deprecate... Bill Cole
- Re: Are sha1 & TLSv1 fully depr... Viktor Dukhovni
- Re: Are sha1 & TLSv1 fully ... pg151
- Re: Are sha1 & TLSv1 fully deprecated wr... Bill Cole
- Re: Are sha1 & TLSv1 fully deprecate... Bill Cole
- Re: Are sha1 & TLSv1 fully deprecated wr... Scott Kitterman
- Re: Are sha1 & TLSv1 fully deprecated wr... Laura Smith
- Re: Are sha1 & TLSv1 fully deprecate... pg151
- Re: Are sha1 & TLSv1 fully depr... Gary
- Re: Are sha1 & TLSv1 fully ... pg151
- Re: Are sha1 & TLSv1 fully ... Christian Kivalo
- Re: Are sha1 & TLSv1 fully deprecate... Kris Deugau
- Re: Are sha1 & TLSv1 fully deprecate... curtis