~ubuntu-branches/ubuntu/maverick/postfix/maverick-security

Committer: Bazaar Package Importer
Author(s): LaMont Jones, Matt Moen, Wietse Venema, LaMont Jones
Date: 2010-06-13 18:30:59 UTC
mfrom: (33.1.2 sid)
Revision ID: james.westby@ubuntu.com-20100613183059-1nooxfg5yjj3itux

Tags: 2.7.1-1

http://bugs.debian.org/575464

http://bugs.debian.org/570327

http://bugs.debian.org/577997

[Matt Moen]

* Create ca-certificates.crt for smtp{,d}_enforce_tls case, too.
  Closes: #575464

[Wietse Venema]

* New upstream release.

[LaMont Jones]

* add freebsd 8 support.  Closes: #570327
* Drop tinycdb build-dep.  Closes: #577997

Show diffs side-by-side

added added

removed removed

html/postconf.5.html

4428

parameter. See there for details.

4429

4430

This feature is available in Postfix 2.6 and later, when Postfix is

4431

compiled and linked with OpenSSL 0.9.9 or later.

4431

compiled and linked with OpenSSL 1.0.0 or later.

4432

4433

4434

</DD>

4440

parameter. See there for details.

4441

4442

This feature is available in Postfix 2.6 and later, when Postfix is

4443

compiled and linked with OpenSSL 0.9.9 or later.

4443

compiled and linked with OpenSSL 1.0.0 or later.

4444

4445

4446

</DD>

9357

</pre>

9358

9359

This feature is available in Postfix 2.6 and later, when Postfix is

9360

compiled and linked with OpenSSL 0.9.9 or later.

9360

compiled and linked with OpenSSL 1.0.0 or later.

9361

9362

9363

</DD>

9375

to anyone else.

9376

9377

This feature is available in Postfix 2.6 and later, when Postfix is

9378

compiled and linked with OpenSSL 0.9.9 or later.

9378

compiled and linked with OpenSSL 1.0.0 or later.

9379

9380

9381

</DD>

12936

</pre>

12937

12938

This feature is available in Postfix 2.6 and later, when Postfix is

12939

compiled and linked with OpenSSL 0.9.9 or later.

12939

compiled and linked with OpenSSL 1.0.0 or later.

12940

12941

12942

</DD>

12954

to anyone else.

12955

12956

This feature is available in Postfix 2.6 and later, when Postfix is

12957

compiled and linked with OpenSSL 0.9.9 or later.

12957

compiled and linked with OpenSSL 1.0.0 or later.

12958

12959

12960

</DD>

12988

</dl>

12989

12990

This feature is available in Postfix 2.6 and later, when it is

12991

compiled and linked with OpenSSL 0.9.9 or later.

12991

compiled and linked with OpenSSL 1.0.0 or later.

12992

12993

12994

</DD>

13776

latter name.

13777

13778

This feature is available in Postfix 2.6 and later, when it is

13779

compiled and linked with OpenSSL 0.9.9 or later.

13779

compiled and linked with OpenSSL 1.0.0 or later.

13780

13781

13782

</DD>

13799

classified as TOP SECRET.

13800

13801

This feature is available in Postfix 2.6 and later, when it is

13802

compiled and linked with OpenSSL 0.9.9 or later.

13802

compiled and linked with OpenSSL 1.0.0 or later.

13803

13804

13805

</DD>

13812

<a href="postconf.5.html#smtp_tls_mandatory_ciphers">smtp_tls_mandatory_ciphers</a> and <a href="postconf.5.html#lmtp_tls_mandatory_ciphers">lmtp_tls_mandatory_ciphers</a>. This is

13813

the cipherlist for the opportunistic ("may") TLS client security

13814

level and is the default cipherlist for the SMTP server. You are

13815

strongly encouraged to not change this setting.

13815

strongly encouraged to not change this setting. With OpenSSL 1.0.0 and

13816

later the cipherlist may start with an "aNULL:" prefix, which restores

13817

the 0.9.8-compatible ordering of the aNULL ciphers to the top of the

13818

list when they are enabled. This prefix is not needed with previous

13819

OpenSSL releases.

13816

13820

13817

13821

This feature is available in Postfix 2.3 and later.

13818

13822

13825

13829

The OpenSSL cipherlist for "HIGH" grade ciphers. This defines

13826

13830

the meaning of the "high" setting in <a href="postconf.5.html#smtpd_tls_mandatory_ciphers">smtpd_tls_mandatory_ciphers</a>,

13827

13831

<a href="postconf.5.html#smtp_tls_mandatory_ciphers">smtp_tls_mandatory_ciphers</a> and <a href="postconf.5.html#lmtp_tls_mandatory_ciphers">lmtp_tls_mandatory_ciphers</a>. You are

13828

strongly encouraged to not change this setting.

13832

strongly encouraged to not change this setting. With OpenSSL 1.0.0 and

13833

later the cipherlist may start with an "aNULL:" prefix, which restores

13834

the 0.9.8-compatible ordering of the aNULL ciphers to the top of the

13835

list when they are enabled. This prefix is not needed with previous

13836

OpenSSL releases.

13829

13837

13830

13838

This feature is available in Postfix 2.3 and later.

13831

13839

13838

13846

The OpenSSL cipherlist for "LOW" or higher grade ciphers. This defines

13839

13847

the meaning of the "low" setting in <a href="postconf.5.html#smtpd_tls_mandatory_ciphers">smtpd_tls_mandatory_ciphers</a>,

13840

13848

<a href="postconf.5.html#smtp_tls_mandatory_ciphers">smtp_tls_mandatory_ciphers</a> and <a href="postconf.5.html#lmtp_tls_mandatory_ciphers">lmtp_tls_mandatory_ciphers</a>. You are

13841

strongly encouraged to not change this setting.

13849

strongly encouraged to not change this setting. With OpenSSL 1.0.0 and

13850

later the cipherlist may start with an "aNULL:" prefix, which restores

13851

the 0.9.8-compatible ordering of the aNULL ciphers to the top of the

13852

list when they are enabled. This prefix is not needed with previous

13853

OpenSSL releases.

13842

13854

13843

13855

This feature is available in Postfix 2.3 and later.

13844

13856

13854

13866

the default cipherlist for mandatory TLS encryption in the TLS

13855

13867

client (with anonymous ciphers disabled when verifying server

13856

13868

certificates). You are strongly encouraged to not change this

13857

setting.

13869

setting. With OpenSSL 1.0.0 and later the cipherlist may start with an

13870

"aNULL:" prefix, which restores the 0.9.8-compatible ordering of the

13871

aNULL ciphers to the top of the list when they are enabled. This prefix

13872

is not needed with previous OpenSSL releases.

13858

13873

13859

13874

This feature is available in Postfix 2.3 and later.

13860

13875

Older »