summaryrefslogtreecommitdiffstats
path: root/qmail-smtpd.c
diff options
context:
space:
mode:
authormanuel <manuel@mausz.at>2016-03-01 16:39:19 +0100
committermanuel <manuel@mausz.at>2016-03-01 16:39:19 +0100
commit08723a94ed461a2f5969b21bb4ddb9f887a21d2a (patch)
tree99d4e9ab71e0dea07b576766abfb7375279a072e /qmail-smtpd.c
parent328b68e47ed505907d8bc9b3246bda99a83e6f42 (diff)
downloadqmail-08723a94ed461a2f5969b21bb4ddb9f887a21d2a.tar.gz
qmail-08723a94ed461a2f5969b21bb4ddb9f887a21d2a.tar.bz2
qmail-08723a94ed461a2f5969b21bb4ddb9f887a21d2a.zip
disable SSLv2
Diffstat (limited to 'qmail-smtpd.c')
-rw-r--r--qmail-smtpd.c1
1 files changed, 1 insertions, 0 deletions
diff --git a/qmail-smtpd.c b/qmail-smtpd.c
index 19e7c9b..1c462b4 100644
--- a/qmail-smtpd.c
+++ b/qmail-smtpd.c
@@ -1372,6 +1372,7 @@ void tls_init()
1372 /* a new SSL context with the bare minimum of options */ 1372 /* a new SSL context with the bare minimum of options */
1373 ctx = SSL_CTX_new(SSLv23_server_method()); 1373 ctx = SSL_CTX_new(SSLv23_server_method());
1374 if (!ctx) { tls_err("unable to initialize ctx"); return; } 1374 if (!ctx) { tls_err("unable to initialize ctx"); return; }
1375 SSL_CTX_set_options(ctx, SSL_OP_NO_SSLv2);
1375 1376
1376 if (!SSL_CTX_use_certificate_chain_file(ctx, servercert)) 1377 if (!SSL_CTX_use_certificate_chain_file(ctx, servercert))
1377 { SSL_CTX_free(ctx); tls_err("missing certificate"); return; } 1378 { SSL_CTX_free(ctx); tls_err("missing certificate"); return; }
generated by cgit v1.2.3 (git 2.25.1) at 2026-01-11 16:00:35 +0000