TLSv1 with cipher AES256-SHA (256/256 bits new) no
authentication
Patrick Radtke
phr2101 at columbia.edu
Fri Sep 30 09:59:26 EDT 2005
I think you need to use either TLS or SSL but not both at the same time.
If you listen on the regular imap port, then clients will connect and
issue a START_TLS command and the session will be encrypted.
When you connect to imaps the session is already encrypted with SSL,
so trying to start TLS doesn't get you anything.
To stop unsecured logins on the imap port you also want to set
allowplaintext: no
-Patrick
On Sep 30, 2005, at 9:30 AM, Ivan R. Sy Jr. wrote:
> Sep 30 20:40:04 mail imaps[41090]: starttls: TLSv1 with cipher
> AES256-SHA (256/256 bits new) no authentication
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.andrew.cmu.edu/mailman/private/info-cyrus/attachments/20050930/5e8eed24/attachment.html
More information about the Info-cyrus
mailing list