wok diff postfix/receipt @ rev 17237
postfix, apache lighttpd-ssl, nginx: CVE-2014-3566
author | Pascal Bellard <pascal.bellard@slitaz.org> |
---|---|
date | Sat Oct 18 14:11:33 2014 +0200 (2014-10-18) |
parents | ad05e742684d |
children | ef162b1d3c0b |
line diff
1.1 --- a/postfix/receipt Sat Jan 11 11:04:09 2014 +0000 1.2 +++ b/postfix/receipt Sat Oct 18 14:11:33 2014 +0200 1.3 @@ -60,6 +60,11 @@ 1.4 mynetworks = 127.0.0.0/8 1.5 alias_maps = hash:/etc/postfix/aliases 1.6 EOF 1.7 + cat >> $fs/etc/postfix/main.cf <<EOT 1.8 + 1.9 +# Unsafe, see CVE-2014-3566 POODLE 1.10 +smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3 1.11 +EOF 1.12 cp -a $stuff/etc $fs 1.13 cp -a $install/var $fs 1.14 mv $fs/etc/postfix/TLS_LICENSE $fs/usr/share/licenses/POSTFIX_TLS_LICENSE