Viktor, Am 01.03.2016 um 18:16 Uhr schrieb Viktor Dukhovni:
what is the oldest version of posfix (and openssl) needed to fix the problem by this configurations changes?Some of the servers that expose TLS to cross-protocol DROWN attacks via SSLv2 are MTAs running Postfix. If you're using an older Postfix release (released prior to July 20 2015), or you've explicitly configured TLS settings that may have enabled SSLv2, please update your configuration as suggested below:
Marc
