Update dovecot ssl protocols

This commit is contained in:
Bob Mottram 2015-03-24 13:26:21 +00:00
parent fcd0f0ca90
commit 2493cf9b3e
2 changed files with 3 additions and 2 deletions

View File

@ -5391,8 +5391,8 @@ function configure_imap {
sed -i 's|ssl_key =.*|ssl_key = </etc/ssl/private/dovecot.key|g' /etc/dovecot/conf.d/10-ssl.conf sed -i 's|ssl_key =.*|ssl_key = </etc/ssl/private/dovecot.key|g' /etc/dovecot/conf.d/10-ssl.conf
sed -i 's|#ssl_dh_parameters_length.*|ssl_dh_parameters_length = 1024|g' /etc/dovecot/conf.d/10-ssl.conf sed -i 's|#ssl_dh_parameters_length.*|ssl_dh_parameters_length = 1024|g' /etc/dovecot/conf.d/10-ssl.conf
sed -i 's/#ssl_prefer_server_ciphers.*/ssl_prefer_server_ciphers = yes/g' /etc/dovecot/conf.d/10-ssl.conf sed -i 's/#ssl_prefer_server_ciphers.*/ssl_prefer_server_ciphers = yes/g' /etc/dovecot/conf.d/10-ssl.conf
sed -i 's|#ssl_protocols =.*|ssl_protocols = !SSLv2|g' /etc/dovecot/conf.d/10-ssl.conf sed -i "s|#ssl_protocols =.*|ssl_protocols = $SSL_PROTOCOLS|g" /etc/dovecot/conf.d/10-ssl.conf
sed -i 's|ssl_protocols =.*|ssl_protocols = !SSLv2|g' /etc/dovecot/conf.d/10-ssl.conf sed -i "s|ssl_protocols =.*|ssl_protocols = $SSL_PROTOCOLS|g" /etc/dovecot/conf.d/10-ssl.conf
echo "ssl_cipher_list = '$SSL_CIPHERS'" >> /etc/dovecot/conf.d/10-ssl.conf echo "ssl_cipher_list = '$SSL_CIPHERS'" >> /etc/dovecot/conf.d/10-ssl.conf
sed -i 's/#process_limit =.*/process_limit = 5/g' /etc/dovecot/conf.d/10-master.conf sed -i 's/#process_limit =.*/process_limit = 5/g' /etc/dovecot/conf.d/10-master.conf

View File

@ -161,6 +161,7 @@ function change_imap_settings {
return return
fi fi
sed -i "s|ssl_cipher_list.*|ssl_cipher_list = '$SSL_CIPHERS'|g" $DOVECOT_CIPHERS sed -i "s|ssl_cipher_list.*|ssl_cipher_list = '$SSL_CIPHERS'|g" $DOVECOT_CIPHERS
sed -i "s|ssl_protocols.*|ssl_protocols = $SSL_PROTOCOLS|g" $DOVECOT_CIPHERS
service dovecot restart service dovecot restart
echo 'imap security settings changed' echo 'imap security settings changed'
} }