SSL protocol version

Johannes Stezenbach js at
Mon Dec 13 14:01:38 GMT 2010


the IMAP server I use was updated and now doesn't allow
SSLv2 anymore.  Thus I found out that offlineimap
used SSLv2 all the time even though SSLv2 security is
flawed :-(

I think it is either a Python or openssl bug and thus filed

However, I think it would be good if offlineimap
would support configuring the SSL protocol version,
by default it should not allow to use SSLv2.
Currently I'm busy and cannot implement it myself,
maybe someone else would like to look into it?


More information about the OfflineIMAP-project mailing list