https://bugs.kde.org/show_bug.cgi?id=394769
Bug ID: 394769
Summary: STARTTLS is restricted to TLS 1.1
Product: kimap
Version: git
Platform: Other
OS: All
Status: UNCONFIRMED
Severity: normal
Priority: NOR
Component: general
Assignee: kdepim-b...@kde.org
Reporter: joerg....@thalheim.io
Target Milestone: ---
KImap makes the assumption that TLSv1 is equal to STARTTLS
https://github.com/KDE/kimap/blob/35464c7fd3858d70c8ac0558ecece216e3a95398/src/loginjob.cpp#L254
This is incorrect as STARTTLS is independent from the protocol version used for
cryptography.
In turn it is not possible to use newer TLS version such as v1.1 or v1.2.
Also it is not possible to use TLS 1.0 on ports without STARTTLS.
A workaround at the moment is to enable imaps (imap without STARTTLS) on a
different port to allow modern TLS version.
--
You are receiving this mail because:
You are watching all bug changes.
