Re: consequences of Moving to 3.0.3 out of ports

2016-01-28 Thread Viktor Dukhovni
On Fri, Jan 29, 2016 at 01:01:12AM -0500, Curtis Villamizar wrote: > Mine has PCRE enabled but ldd also doesn't find anything with pcre in > the name. > > # pkg info -a | grep postfix > postfix-current-3.0.20151003,4 Secure alternative to widely-used Sendmail > > # pkg info -d postfix-current-3.

Re: consequences of Moving to 3.0.3 out of ports

2016-01-28 Thread Curtis Villamizar
In message <47e15980-159e-4f15-8256-c868632b2...@kreme.com> "@lbutlr" writes: > > I've mostly always compiled postfix myself, but managing postfix and > the mail server is something I have less and less time for, so I took > the opportunity of moving to 3.x to switch to using ports in freeBSD > fo

Re: OpenSSL CVE-2016-0701

2016-01-28 Thread CSS
> On Jan 28, 2016, at 8:38 PM, Viktor Dukhovni > wrote: > > On Thu, Jan 28, 2016 at 08:36:02PM -0500, CSS wrote: > >> http://intothesymmetry.blogspot.com/2016/01/openssl-key-recovery-attack-on-dh-small.html >> >> It seems that there are a number of factors (that I do not understand) >> that d

Re: OpenSSL CVE-2016-0701

2016-01-28 Thread Viktor Dukhovni
On Thu, Jan 28, 2016 at 08:36:02PM -0500, CSS wrote: > http://intothesymmetry.blogspot.com/2016/01/openssl-key-recovery-attack-on-dh-small.html > > It seems that there are a number of factors (that I do not understand) > that determine whether an application is vulnerable. For example, > Apache/

OpenSSL CVE-2016-0701

2016-01-28 Thread CSS
http://intothesymmetry.blogspot.com/2016/01/openssl-key-recovery-attack-on-dh-small.html It seems that there are a number of factors (that I do not understand) that determine whether an application is vulnerable. For example, Apache/mod_ssl is not. Is there enough information here to determine

Re: SSL_accept:unknown state

2016-01-28 Thread Viktor Dukhovni
On Thu, Jan 28, 2016 at 12:50:53PM +0100, richard lucassen wrote: > On Thu, 28 Jan 2016 06:17:09 -0500 (EST) > wie...@porcupine.org (Wietse Venema) wrote: > > > richard lucassen: > > > When I send a message, I get a number of lines in the logs telling > > > me: > > > > > > SSL_accept:unknown sta

Re: SSL_accept:unknown state

2016-01-28 Thread richard lucassen
On Thu, 28 Jan 2016 06:17:09 -0500 (EST) wie...@porcupine.org (Wietse Venema) wrote: > richard lucassen: > > When I send a message, I get a number of lines in the logs telling > > me: > > > > SSL_accept:unknown state > > > > Everything works fine. Anyone a hint? > > Do not turn on verbose loggi

Re: SSL_accept:unknown state

2016-01-28 Thread Wietse Venema
richard lucassen: > When I send a message, I get a number of lines in the logs telling me: > > SSL_accept:unknown state > > Everything works fine. Anyone a hint? Do not turn on verbose logging. Wietse

SSL_accept:unknown state

2016-01-28 Thread richard lucassen
When I send a message, I get a number of lines in the logs telling me: SSL_accept:unknown state Everything works fine. Anyone a hint? R. mail.info: Jan 28 09:04:39 postfix/smtpd[7581]: initializing the server-side TLS engine mail.info: Jan 28 09:04:39 postfix/smtpd[7581]: connect from assura