Hi,
I guess you could do this via a non-documented property
I have reopened JAMES-385 to add doc and examples.
In the meantime, you could try in your smtpserver.conf with for example:
<tls socketTLS="false" startTLS="false">
....
<supportedCipherSuites>
<cipherSuite>RSA,HMAC</cipherSuite>
</supportedCipherSuites>
...
</tls>
Thx, Eric
On 07/12/2012 22:49, Phillip Odam wrote:
I want to be able to disable weak ciphers when using either SSL or TLS
for SMTP.
From what I can gather the issue
https://issues.apache.org/jira/browse/JAMES-385 was raised to address
the ability to be able to select which ciphers are offered and hence be
able to disable weak ciphers.
However reading through JAMES-385 hasn't helped me to figure out how to
disable weak ciphers. I know I must be missing something glaringly obvious!
To accomplish this in JAMES is it anything like Apache Tomcat -
http://tomcat.apache.org/tomcat-7.0-doc/config/http.html#SSL_Support_-_BIO_and_NIO,
where you set the ciphers attribute to a comma separated list of
encryption ciphers that the socket is allowed to use.
Regards
Phillip
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
