[Pkg-openssl-devel] Bug#924621: Bug#924621: Bug#924621: openssl 1.1.1b-1 make fetchmail unusable
Atsuhito Kohda
atsuhito_k at tokushima-u.ac.jp
Mon Mar 18 04:55:50 GMT 2019
Hi Kurt,
> So from what I understand, the problem is really on the dovecot
> side. What does dovecot's log show?
>
> Dovecot can configure DH, which seems to default to:
> ssl_dh = </usr/share/dovecot/dh.pem
>
> That file should be fine, it's 4096 bit.
I generated 4096 bit dh_key:
openssl dhparam -out /path/to/dh.pem 4096
then I modified a configuration file of dovecot as follows:
ssl_dh=</path/to/dh.pem
then I restarted dovecot. Now fetch mail works fine
after I upgraded openssl 1.1.1b-1 .
I thinkf if this 4096 bit key is critical for fetchmail
to work fine under openssl 1.1.1b-1, it should be documented
somewhere like NEWS.Denian of openssl etc.
Thanks for your valuable advice.
Best regards, 2019-3-18(Mon)
--
**************************
Atsuhito Kohda
atsuhito_k AT tokushima-u.ac.jp
More information about the Pkg-openssl-devel
mailing list