Date: Thu, 18 Jun 2015 08:10:33 -0700 From: Gregory Shapiro <gshapiro@gshapiro.net> To: Peter Olsson <list-freebsd-announce@jyborn.se> Cc: Royce Williams <royce@tycho.org>, FreeBSD Errata Notices <errata-notices@freebsd.org>, freebsd-stable <freebsd-stable@freebsd.org> Subject: Re: [FreeBSD-Announce] FreeBSD Errata Notice FreeBSD-EN-15:08.sendmail Message-ID: <20150618151032.GB42082@minime.local> In-Reply-To: <20150618132211.GO7234@pol-server.leissner.se> References: <201506180553.t5I5rKlO059969@freefall.freebsd.org> <20150618112132.GD7234@pol-server.leissner.se> <CA%2BE3k91zj4Tt5BQKNbE5dn1FvykCbn=E1xhFjrkU18jMnL6DCw@mail.gmail.com> <20150618132211.GO7234@pol-server.leissner.se>
next in thread | previous in thread | raw e-mail | index | archive | help
> > Did you (re)generate your dh.params file as noted in the Workaround section? > > No, because of this text under Solution: > " > A change to the raise the default for sendmail client connections to > 1024-bit DH parameters has been committed. > " > > As I understand it this would remove the need for generating > the dh.params file? You do not need to regenerate dh.params with the patch unless you have specifically set DHParameters in /etc/mail/sendmail.cf to a lower strength. What is the output of: grep DHParam /etc/mail/sendmail.cf If it is set to a string beginning with '5' or a filename and that file was generated using 512-bit strength, then remove that setting.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20150618151032.GB42082>