main/dovecot: set default ssl_prefer_server_ciphers = yes

author: Jakub Jirutka <jakub@jirutka.cz> 2018-07-23 00:47:23 +0200
committer: Jakub Jirutka <jakub@jirutka.cz> 2018-07-23 00:49:05 +0200
commit: 47916f0923e7e9aa1ea5bc047eca38efa55b57f2 (patch)
tree: 7edbb20548e65aa25188711a2cdf7ea90791bc8a /main/dovecot/default-config.patch
parent: cf38959d9f08c6173dd2452c7f7069c6895455e1 (diff)
download: aports-47916f0923e7e9aa1ea5bc047eca38efa55b57f2.tar.bz2
aports-47916f0923e7e9aa1ea5bc047eca38efa55b57f2.tar.xz
1 files changed, 9 insertions, 0 deletions
diff --git a/main/dovecot/default-config.patch b/main/dovecot/default-config.patch
index c6d324085e..0f8a7385a2 100644
--- a/main/dovecot/default-config.patch
+++ b/main/dovecot/default-config.patch
@@ -35,3 +35,12 @@
  
  # PEM encoded X.509 SSL/TLS certificate and private key. They're opened before
  # dropping root privileges, so keep the key file unreadable by anyone but
+@@ -67,7 +67,7 @@
+ #ssl_curve_list =
+ 
+ # Prefer the server's order of ciphers over client's.
+-#ssl_prefer_server_ciphers = no
++ssl_prefer_server_ciphers = yes
+ 
+ # SSL crypto device to use, for valid values run "openssl engine"
+ #ssl_crypto_device =
author	Jakub Jirutka <jakub@jirutka.cz>	2018-07-23 00:47:23 +0200
committer	Jakub Jirutka <jakub@jirutka.cz>	2018-07-23 00:49:05 +0200
commit	47916f0923e7e9aa1ea5bc047eca38efa55b57f2 (patch)
tree	7edbb20548e65aa25188711a2cdf7ea90791bc8a /main/dovecot/default-config.patch
parent	cf38959d9f08c6173dd2452c7f7069c6895455e1 (diff)
download	aports-47916f0923e7e9aa1ea5bc047eca38efa55b57f2.tar.bz2 aports-47916f0923e7e9aa1ea5bc047eca38efa55b57f2.tar.xz