[PATCH] Don't allow SSLv2 connections

Sebastian Spaeth Sebastian at SSpaeth.de
Fri Jan 28 08:46:16 GMT 2011

On Thu, 27 Jan 2011 16:51:15 +0100, Johannes Stezenbach <js at sig21.net> wrote:
> I'm not sure this will work since the server might have closed
> the socket already.  You'd need a new self.sock.

One might think so. Unfortunately the python SSL documentation is sourly
lacking. However, I have tried this patch by first trying SSLv2 (which
my mail server refuses) and then trying SSLv3 as fallback (which my
server allows) and the code as in that patch worked just fine.

This is certainly no proof that it will work with all servers and all
versions of openssl, but it does work here.

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/offlineimap-project/attachments/20110128/ce6604b1/attachment-0001.sig>

More information about the OfflineIMAP-project mailing list