modoboa-installer icon indicating copy to clipboard operation
modoboa-installer copied to clipboard

Published 20 hours ago verified publisher icon modoboa

Set Dovecot DH to 2048 bit to increase SSL communications strength

Open almico opened this issue 4 years ago • 0 comments

Impacted versions

1.14.0

  • Distribution: Centos
  • Codename: Centos 7
  • Arch: 64 Bits
  • Database: PostgreSQL

Steps to reproduce

Using OpenVAS on a standard installation, it blames about the lack of security of the Dovecot DH key size. In order to greatly mitigate the risk, a setting (in /etc/dovecot/10-ssl.conf) like:

ssl_dh_parameters_length = 2048

should do the trick.

almico avatar Mar 30 '20 07:03 almico