Re: [Evolution] Fatal TLS Alert

From: Milan Crha <mcrha redhat com>
To: evolution-list gnome org
Subject: Re: [Evolution] Fatal TLS Alert
Date: Mon, 05 Nov 2018 09:40:57 +0100

On Sun, 2018-11-04 at 12:03 +0000, Pete Biggs wrote:

Evolution (and presumably the others you mention) uses OpenSSL (I
think) for the encrypted links.


        Hi,
I agree with you, there might be a system-wide option to allow weaker
algorithms, which are disabled by default. I only want to give a little
clarification for the above: Evolution (or better evolution-data-
server's Camel library) used to use NSS for connections in the past,
long ago. It uses glib's gio API to connect to servers for several
years, which relies on glib-networking, which uses gnutls in the
background [1]. There's a plan to support also OpenSSL [2].
        Bye,
        Milan

[1] https://gitlab.gnome.org/GNOME/glib-networking/tree/2.58.0/tls
[2] https://gitlab.gnome.org/GNOME/glib-networking/issues/40

References:
- [Evolution] Fatal TLS Alert
  - From: Iain McVey
- Re: [Evolution] Fatal TLS Alert
  - From: Pete Biggs

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]