Disable SSLv3 in Zimbra 8.6+ —
As is described here : https://community.zimbra.com/collaboration/f/1886/t/1135415 i added but port 465 still have SSLv3.
Ok,so what i need to do?
To completely disable it i saw the actual config :
zimbra@mail2:~$ postconf | grep SSL
lmtp_tls_mandatory_protocols = !SSLv2
lmtp_tls_protocols = !SSLv2, !SSLv3
smtp_tls_mandatory_protocols = !SSLv2
smtp_tls_protocols = !SSLv2, !SSLv3
smtpd_tls_mandatory_protocols = !SSLv2,!SSLv3
smtpd_tls_protocols = !SSLv2,!SSLv3
After this i configure postfix :
zimbra@mail2:~$ postconf -e lmtp_tls_mandatory_protocols='!SSLv2,!SSLv3'
zimbra@mail2:~$ postconf -e smtp_tls_mandatory_protocols='!SSLv2,!SSLv3'
zimbra@mail2:~$ postconf -e smtpd_tls_mandatory_protocols='!SSLv2,!SSLv3'
After this verify that all is ok :
zimbra@mail2:~$ postconf | grep SSL
lmtp_tls_mandatory_protocols = !SSLv2,!SSLv3
lmtp_tls_protocols = !SSLv2, !SSLv3
smtp_tls_mandatory_protocols = !SSLv2,!SSLv3
smtp_tls_protocols = !SSLv2, !SSLv3
smtpd_tls_mandatory_protocols = !SSLv2,!SSLv3
smtpd_tls_protocols = !SSLv2,!SSLv3
Categorised as: Linux | Zimbra
Comments are disabled on this post