"Fatal error: insufficient security" with NSS 3.27.1
Teemu Pulliainen
teemu at tmu.fi
Fri Nov 4 11:09:06 CET 2016
Hi,
On 10/24/2016 06:26 PM, Tobias Brunner wrote:
> Hi everyone,
>
> It looks like NSS 3.27.1 breaks connectivity to Guam:
> https://git.kolab.org/T1775
>
> Does anyone else see the same behaviour?
>
> Cheers,
> Tobias
>
>
>
> _______________________________________________
> users mailing list
> users at lists.kolab.org
> https://lists.kolab.org/mailman/listinfo/users
thanks to vanmeeuven for finding the probable root cause (missing
variable in the client-side NSS build, see above linked ticket). I'm
confirming that it works by explicitly setting TLS version to 1.1 in
Thunderbird (*).
In case someone has experience with Fedora bug reporting, please go
ahead :) If not, I'll try to file one.
-Teemu
(*) Preferences -> Advanced -> Config editor -> Set
"security.tls.version.max" to "2" which currently equals TLS 1.1.
According to the Mozilla docs, "3" equals 1.2 instead of the problematic
1.3 , but that's probably just "whatever is newest". Note that you
should document and probably reset this change in the future. While TLS
1.1 is still considered secure by most people, that is not going to be
the case forever.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.kolab.org/pipermail/users/attachments/20161104/ed35a293/attachment.html>
More information about the users
mailing list