Item15331: TLS version problem when sending email
Priority: Urgent
Current State: Confirmed
Released In: 2.1.9
Target Release: patch
Applies To: Engine
Component:
Branches:
Recently my installation of Foswiki (version 2.1.7) has failed to send emails to a postfix server, due to the specification of an old version of TLS - TLSv1.
I don't know when this started, but suspect it was an upgrade to the postfix server, to stop accepting this old version of TLS.
According to this website:
https://metacpan.org/pod/IO::Socket::SSL
the recommendation is not to specify SSL_version, under "Common Usage Errors".
To get my installation of Foswiki working again, I removed the following line from Foswiki-2.1.7/lib/Foswiki/Net.pm
SSL_version => ( ( $tls || $starttls ) ? 'TLSv1' : 'SSLv3' ),
i.e. removing the specification of SSL_version.
I see Net.pm hasn't been updated for 2 years and still seems to specify SSL_version in the version 2.1.8 of Foswiki.
--
JohnElbourne - 25 May 2024
Will remove SSL_version parameter in 2.1.9
--
MichaelDaum - 04 Jun 2024
Great thank-you
--
JohnElbourne - 21 Jun 2024