[Pkg-openssl-devel] Bug#912067: Bug#912067: libssl1.1: please add getmail/getmail4 to the dependencies to check
Kurt Roeckx
kurt at roeckx.be
Sat Oct 27 22:51:15 BST 2018
On Sat, Oct 27, 2018 at 05:18:22PM -0400, ant wrote:
>
> =====
> getmail version 5.6
> Copyright (C) 1998-2012 Charles Cazabon. Licensed under the GNU GPL version 2.
> SimplePOP3SSLRetriever:ant at anthive.com@mail.anthive.com:995:
> rc-03ant: socket error ([SSL: UNSUPPORTED_PROTOCOL] unsupported protocol (_ssl.c:726))
> 0 messages (0 bytes) retrieved, 0 skipped
> =====
That server only supports TLS1, and is using a 1024 bit DHE key.
I suggest you talk to the adminstrator to upgrade that server so
that at least TLS 1.2 is supported.
As workaround you can change /etc/ssl/openssl.cnf. At the end of
the file it has:
MinProtocol = TLSv1.2
CipherString = DEFAULT at SECLEVEL=2
It should work again if you change that to:
MinProtocol = TLSv1
CipherString = DEFAULT at SECLEVEL=1
It could be that you can also configure some of that in getmail,
in which case I would recommend that you configure it there.
Kurt
More information about the Pkg-openssl-devel
mailing list