Problems with port 993 (SSL)

Stefan Suurmeijer stefan at raptorweb.nl
Tue Sep 1 19:36:38 EDT 2015


Hi Paul,

a fellow Groninger? Then lets try to help ;-)

>From the OSX v10.11 release notes (released 15-8):

  * DHE_RSA cipher suites are now disabled by default in Secure
    Transport for TLS clients. This may cause a failure to connect to
    TLS servers that only support DHE_RSA cipher suites. Applications
    that explicitly enable cipher suites using SSLSetEnabledCiphers()
    are not affected. Safari may display a “Safari can’t establish a
    secure connection to the server” error page. Safari and other
    clients of CFNetwork API (NSURLSession, NSURLConnection,
    CFHTTPStream, CFSocketStream and Cocoa equivalent) will show a
    “CFNetwork SSLHandshake failed” error in Console.


Maybe you can use checktls.com to find out which cipher your site uses.
A very useful site.
If your site uses a DHE-RSA cipher, you may need to change the
tls_cipher_list in your imapd.conf

See
https://developer.apple.com/library/prerelease/mac/releasenotes/General/rn-osx-10.11/

cheers,
Stefan



On 1-9-2015 18:04, Paul van der Vlis wrote:
> Op 01-09-15 om 17:35 schreef Patrick Boutilier:
>
>> What version of Cyrus?
> Really old:  2.2.13
> https://packages.debian.org/squeeze/cyrus-imapd-2.2
>
> With regards,
> Paul van der Vlis.
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.andrew.cmu.edu/pipermail/info-cyrus/attachments/20150902/6f2811b3/attachment.html 


More information about the Info-cyrus mailing list