severity 722105 serious
tags 722105 security
thanks
Having SSLv2 enabled is not acceptable for a server in Debian, especially
since it apparently cannot be disabled by user configuration. Please
ensure that = 2.1.12 enters the archive.
Also, can you investigate whether the relevant changes:
-
Package: ejabberd
Severity: wishlist
Dear Maintainer,
Upstream has released new versions; 2.1.12 has important changes to the
SSL/TLS driver, disabling broken SSLv2 and export ciphers.
Thank you,
C.
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of
2 matches
Mail list logo
