diff options
| author | Silvio Rhatto <rhatto@riseup.net> | 2014-10-26 13:36:16 -0200 |
|---|---|---|
| committer | Silvio Rhatto <rhatto@riseup.net> | 2014-10-26 13:36:16 -0200 |
| commit | d26af22932b1c868512dcb39644bdb577adb160b (patch) | |
| tree | 7a2a4e80328d5179b040ea6a96d36fa53b820d12 /manifests | |
| parent | 3650633a6281df6acd1de9b1dd5bcdf27f041ef0 (diff) | |
| download | puppet-mail-d26af22932b1c868512dcb39644bdb577adb160b.tar.gz puppet-mail-d26af22932b1c868512dcb39644bdb577adb160b.tar.bz2 | |
Disabling tls compression
Diffstat (limited to 'manifests')
| -rw-r--r-- | manifests/tls/hardened.pp | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/manifests/tls/hardened.pp b/manifests/tls/hardened.pp index 78d8093..735135c 100644 --- a/manifests/tls/hardened.pp +++ b/manifests/tls/hardened.pp @@ -9,6 +9,7 @@ class mail::tls::hardened inherits mail::tls { postfix::config { "smtpd_tls_mandatory_protocols": value => '!SSLv2, !SSLv3' } postfix::config { "smtpd_tls_session_cache_database": value => 'btree:${data_directory}/smtpd_scache' } postfix::config { "smtp_tls_session_cache_database": value => 'btree:${data_directory}/smtp_scache' } + postfix::config { "tls_ssl_options": value => 'no_compression' } postfix::config { "smtpd_tls_loglevel": value => '1' } # DH parameters |