I just did a test of my server using mailtest@unlocktheinbox.com. It returned a warning about SSLv3 not being disabled on port 465. It was my understanding that this was supposed to be disabled by default on 8.6.
Can anyone point me in the right direction to check to make sure it is disabled?
Concerned about SSLv3 in Zimbra 8.6
Concerned about SSLv3 in Zimbra 8.6
I managed to get it fixed. For some reason, setting zimbraMtaSmtpdTlsProtocols equal to !SSLv2, !SSLv3 was not enough by itself.
I had to use:
postconf -e smtpd_tls_protocols='!SSLv2,!SSLv3'
postconf -e smtpd_tls_mandatory_protocols='!SSLv2,!SSLv3'
From here: https://wiki.zimbra.com/wiki/How_to_disable_SSLv3 in order to get it disabled. I wonder if this is a bug?
I had to use:
postconf -e smtpd_tls_protocols='!SSLv2,!SSLv3'
postconf -e smtpd_tls_mandatory_protocols='!SSLv2,!SSLv3'
From here: https://wiki.zimbra.com/wiki/How_to_disable_SSLv3 in order to get it disabled. I wonder if this is a bug?