On 12/06/2015 07:19 AM, Gerhard Wiesinger wrote:
Session tickets are broken by DESIGN as they violate PFS (Perfect
Forward Secrecy). If you can steal one AES key (all session tickets
are encrypted for server lifetime with only one key) you can decrypt
ALL sessions ever made with session
On 06.12.2015 13:10, Timo Sirainen wrote:
On 05 Dec 2015, at 11:32, Gerhard Wiesinger wrote:
Is it possible to configure the secure session caching mechanism?
e.g. like in nginx: https://bjornjohansen.no/optimizing-https-nginx
I remember hearing about various security
On 05 Dec 2015, at 11:32, Gerhard Wiesinger wrote:
>
> Is it possible to configure the secure session caching mechanism?
> e.g. like in nginx: https://bjornjohansen.no/optimizing-https-nginx
I remember hearing about various security vulnerabilities in that earlier.. I
On 12/05/2015 04:32 AM, Gerhard Wiesinger wrote:
like in nginx
And OCSP Stapling would be nice too :-)
On 03.12.2015 14:51, Timo Sirainen wrote:
http://dovecot.org/releases/2.2/rc/dovecot-2.2.20.rc1.tar.gz
http://dovecot.org/releases/2.2/rc/dovecot-2.2.20.rc1.tar.gz.sig
v2.2.20 probably will be released tomorrow or maybe during weekend.
+ ssl_options: Added support for no_ticket
Hello
On 03/12/2015 13:51, Timo Sirainen wrote:
http://dovecot.org/releases/2.2/rc/dovecot-2.2.20.rc1.tar.gz
I see a clash with the pigeonhole 0.4.9 preventing compilation of
pigeonhole.
"sieve-settings.c", line 14: identifier redeclared: t_str_trim
current : static function(pointer to const
> On 04 Dec 2015, at 11:41, James wrote:
>
> pigeonhole src/lib-sieve/sieve-settings.c line 13 says:
> // FIXME: add to dovecot
>
> Looks like it's added to dovecot but not removed from pigeonhole.
>
Stephan will soon release pigeonhole 0.4.10rc for dovecot 2.2.20 that will
> On 04 Dec 2015, at 11:41, James wrote:
>
> pigeonhole src/lib-sieve/sieve-settings.c line 13 says:
> // FIXME: add to dovecot
>
> Looks like it's added to dovecot but not removed from pigeonhole.
>
Stephan will soon release pigeonhole 0.4.10rc for dovecot 2.2.20 that will
> On 03 Dec 2015, at 16:09, Thomas Leuxner wrote:
>
> * Timo Sirainen 2015.12.03 14:51:
>
>> + Added mailbox { autoexpunge= } setting. See
>> http://wiki2.dovecot.org/MailboxSettings for details.
>
> namespace inbox {
> mailbox Trash {
>autoexpunge = 5
http://dovecot.org/releases/2.2/rc/dovecot-2.2.20.rc1.tar.gz
http://dovecot.org/releases/2.2/rc/dovecot-2.2.20.rc1.tar.gz.sig
v2.2.20 probably will be released tomorrow or maybe during weekend.
+ Added mailbox { autoexpunge= } setting. See
http://wiki2.dovecot.org/MailboxSettings for
* Timo Sirainen 2015.12.03 15:27:
> protocol imap {
> namespace inbox {
> mailbox Trash {
> autoexpunge = 5 days
> }
> }
> }
Thanks.
signature.asc
Description: Digital signature
* Timo Sirainen 2015.12.03 14:51:
> + Added mailbox { autoexpunge= } setting. See
>http://wiki2.dovecot.org/MailboxSettings for details.
namespace inbox {
mailbox Trash {
autoexpunge = 5 days
special_use = \Trash
}
}
I'm using autoexpunge on the Trash mailbox.
12 matches
Mail list logo