dovecot: remove !SSLv2 from ssl_cipher_list.

author: Guilhem Moulin <guilhem@fripost.org> 2015-12-15 02:22:18 +0100
committer: Guilhem Moulin <guilhem@fripost.org> 2015-12-15 02:22:29 +0100
commit: 2c27f5a8d19e8468f4e6bf868ac8f175a035740a (patch)
tree: 997655e1d659d7d2562fe07c69d0923445ed0720 /roles/IMAP
parent: b483d2050147115dce151d669c537bcb1776164e (diff)
1 files changed, 1 insertions, 1 deletions
diff --git a/roles/IMAP/files/etc/dovecot/conf.d/10-ssl.conf b/roles/IMAP/files/etc/dovecot/conf.d/10-ssl.conf
index b401c93..dc0b5bf 100644
--- a/roles/IMAP/files/etc/dovecot/conf.d/10-ssl.conf
+++ b/roles/IMAP/files/etc/dovecot/conf.d/10-ssl.conf
@@ -32,27 +32,27 @@ ssl_key = </etc/dovecot/ssl/imap.fripost.org.key
 # /etc/pki/tls/cert.pem in RedHat-based systems.
 #ssl_client_ca_dir =
 #ssl_client_ca_file =
 
 # Request client to send a certificate. If you also want to require it, set
 # auth_ssl_require_client_cert=yes in auth section.
 #ssl_verify_client_cert = no
 
 # Which field from certificate to use for username. commonName and
 # x500UniqueIdentifier are the usual choices. You'll also need to set
 # auth_ssl_username_from_cert=yes.
 #ssl_cert_username_field = commonName
 
 # DH parameters length to use.
 ssl_dh_parameters_length = 2048
 
 # SSL protocols to use
 ssl_protocols = !SSLv2 !SSLv3
 
 # SSL ciphers to use
-ssl_cipher_list = HIGH:!SSLv2:!aNULL:!eNULL:!3DES:!MD5:@STRENGTH
+ssl_cipher_list = HIGH:!aNULL:!eNULL:!3DES:!MD5:@STRENGTH
 
 # Prefer the server's order of ciphers over client's.
 #ssl_prefer_server_ciphers = no
 
 # SSL crypto device to use, for valid values run "openssl engine"
 #ssl_crypto_device =
author	Guilhem Moulin <guilhem@fripost.org>	2015-12-15 02:22:18 +0100
committer	Guilhem Moulin <guilhem@fripost.org>	2015-12-15 02:22:29 +0100
commit	2c27f5a8d19e8468f4e6bf868ac8f175a035740a (patch)
tree	997655e1d659d7d2562fe07c69d0923445ed0720 /roles/IMAP
parent	b483d2050147115dce151d669c537bcb1776164e (diff)