[Solved] (was: Ssl error with offlineimap version 6.6.1 (debian package))

Leandro Noferini lnoferin at cybervalley.org
Tue Feb 9 11:15:07 GMT 2016


Leandro Noferini <lnoferin at cybervalley.org> writes:


[...]

>> You can check if your IMAP server is vulnerable with the command:
>>     $ openssl s_client -connect $SERVER:imaps -cipher "EDH" | grep
>> "Server Temp Key"
>
>> Where $SERVER is the hostname of your IMAP server. If the result shows
>> 768 bits or less then OpenSSL (and OfflineIMAP effectively) will refuse
>> to connect. Soon, 1024 bits will also be treated as too weak and
>> refused.
>
> Server Temp Key: DH, 768 bits
>
> Ok, it's clear!

I created a new dhparam.pem file needed to courier of 2048 bytes and now
it works normally.

Thanks a lot to you all!

-- 
leandro
Scegli sempre un'idea che ti permetta poi di cambiarla
http://6xukrlqedfabdjrb.onion
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 464 bytes
Desc: not available
URL: <http://alioth-lists.debian.net/pipermail/offlineimap-project/attachments/20160209/2bffc2c9/attachment-0003.sig>


More information about the OfflineIMAP-project mailing list