Re: v2.2.20 release candidate released

2015-12-08 Thread Gedalya
On 12/06/2015 07:19 AM, Gerhard Wiesinger wrote: Session tickets are broken by DESIGN as they violate PFS (Perfect Forward Secrecy). If you can steal one AES key (all session tickets are encrypted for server lifetime with only one key) you can decrypt ALL sessions ever made with session

Re: v2.2.20 release candidate released

2015-12-06 Thread Gerhard Wiesinger
On 06.12.2015 13:10, Timo Sirainen wrote: On 05 Dec 2015, at 11:32, Gerhard Wiesinger wrote: Is it possible to configure the secure session caching mechanism? e.g. like in nginx: https://bjornjohansen.no/optimizing-https-nginx I remember hearing about various security

Re: v2.2.20 release candidate released

2015-12-06 Thread Timo Sirainen
On 05 Dec 2015, at 11:32, Gerhard Wiesinger wrote: > > Is it possible to configure the secure session caching mechanism? > e.g. like in nginx: https://bjornjohansen.no/optimizing-https-nginx I remember hearing about various security vulnerabilities in that earlier.. I

Re: v2.2.20 release candidate released

2015-12-05 Thread Gedalya
On 12/05/2015 04:32 AM, Gerhard Wiesinger wrote: like in nginx And OCSP Stapling would be nice too :-)

Re: v2.2.20 release candidate released

2015-12-05 Thread Gerhard Wiesinger
On 03.12.2015 14:51, Timo Sirainen wrote: http://dovecot.org/releases/2.2/rc/dovecot-2.2.20.rc1.tar.gz http://dovecot.org/releases/2.2/rc/dovecot-2.2.20.rc1.tar.gz.sig v2.2.20 probably will be released tomorrow or maybe during weekend. + ssl_options: Added support for no_ticket Hello

Re: v2.2.20 release candidate released

2015-12-04 Thread James
On 03/12/2015 13:51, Timo Sirainen wrote: http://dovecot.org/releases/2.2/rc/dovecot-2.2.20.rc1.tar.gz I see a clash with the pigeonhole 0.4.9 preventing compilation of pigeonhole. "sieve-settings.c", line 14: identifier redeclared: t_str_trim current : static function(pointer to const

Re: v2.2.20 release candidate released

2015-12-04 Thread Sami Ketola
> On 04 Dec 2015, at 11:41, James wrote: > > pigeonhole src/lib-sieve/sieve-settings.c line 13 says: > // FIXME: add to dovecot > > Looks like it's added to dovecot but not removed from pigeonhole. > Stephan will soon release pigeonhole 0.4.10rc for dovecot 2.2.20 that will

Re: v2.2.20 release candidate released

2015-12-04 Thread Sami Ketola
> On 04 Dec 2015, at 11:41, James wrote: > > pigeonhole src/lib-sieve/sieve-settings.c line 13 says: > // FIXME: add to dovecot > > Looks like it's added to dovecot but not removed from pigeonhole. > Stephan will soon release pigeonhole 0.4.10rc for dovecot 2.2.20 that will

Re: [Dovecot-news] v2.2.20 release candidate released

2015-12-03 Thread Timo Sirainen
> On 03 Dec 2015, at 16:09, Thomas Leuxner wrote: > > * Timo Sirainen 2015.12.03 14:51: > >> + Added mailbox { autoexpunge= } setting. See >> http://wiki2.dovecot.org/MailboxSettings for details. > > namespace inbox { > mailbox Trash { >autoexpunge = 5

v2.2.20 release candidate released

2015-12-03 Thread Timo Sirainen
http://dovecot.org/releases/2.2/rc/dovecot-2.2.20.rc1.tar.gz http://dovecot.org/releases/2.2/rc/dovecot-2.2.20.rc1.tar.gz.sig v2.2.20 probably will be released tomorrow or maybe during weekend. + Added mailbox { autoexpunge= } setting. See http://wiki2.dovecot.org/MailboxSettings for

Re: [Dovecot-news] v2.2.20 release candidate released

2015-12-03 Thread Thomas Leuxner
* Timo Sirainen 2015.12.03 15:27: > protocol imap { > namespace inbox { > mailbox Trash { > autoexpunge = 5 days > } > } > } Thanks. signature.asc Description: Digital signature

Re: [Dovecot-news] v2.2.20 release candidate released

2015-12-03 Thread Thomas Leuxner
* Timo Sirainen 2015.12.03 14:51: > + Added mailbox { autoexpunge= } setting. See >http://wiki2.dovecot.org/MailboxSettings for details. namespace inbox { mailbox Trash { autoexpunge = 5 days special_use = \Trash } } I'm using autoexpunge on the Trash mailbox.