docker-mailserver/target/postfix
Brennan Kinney 4dda5f8b1f
chore: Drop support for deprecated TLS versions (#2945)
* chore: Set `TLS_INTERMEDIATE_SUITE` to only use TLS 1.2 ciphersuites

Removes support of the following cipher suites that are only valid for TLS 1.0 + 1.1:

- `ECDHE-ECDSA-AES128-SHA`
- `ECDHE-RSA-AES128-SHA`
- `ECDHE-ECDSA-AES256-SHA`
- `ECDHE-RSA-AES256-SHA`
- `DHE-RSA-AES128-SHA`
- `DHE-RSA-AES256-SHA`

* chore: Update TLS version min and ignore settings

These are now the same as modern settings.

* fix: Remove min TLS support workaround

No longer required now that outdated TLS versions have been dropped.

* tests: Remove support for TLS 1.0 and 1.1 ciphersuites

* tests: Remove support for TLS 1.0 and 1.1 ciphersuites (Port 25)

The removed SHA1 cipher suites are still supported in TLS 1.2, thus they've been excluded for port 25 via the `SHA1` exclusion pattern in `main.cf`.
2022-12-24 02:30:43 +13:00
..
header_checks.pcre Support for additional postgrey options (Close: #998, #999, #1046) 2018-11-01 19:32:36 +01:00
ldap-aliases.cf Added support for Dovecot and Postfix LDAP TLS (#800) 2018-01-25 22:38:41 +01:00
ldap-domains.cf Added support for Dovecot and Postfix LDAP TLS (#800) 2018-01-25 22:38:41 +01:00
ldap-groups.cf Added support for Dovecot and Postfix LDAP TLS (#800) 2018-01-25 22:38:41 +01:00
ldap-senders.cf Add LDAP_QUERY_FILTER_SENDERS setting for spoof protection with LDAP (#1902) 2021-04-17 22:40:19 +02:00
ldap-users.cf Added support for Dovecot and Postfix LDAP TLS (#800) 2018-01-25 22:38:41 +01:00
main.cf chore: Drop support for deprecated TLS versions (#2945) 2022-12-24 02:30:43 +13:00
master.cf service(postfix): Better handling of the compatibility_level setting (#2597) 2022-06-05 12:10:20 +12:00
sender_header_filter.pcre Improve the privacy of the client by removing sensitive details 2017-09-07 19:29:50 +02:00
sender_login_maps.pcre Added reject_authenticated_sender_login_mismatch (#872) 2018-03-07 19:33:43 +01:00