[kimap] [Bug 394769] New: STARTTLS is restricted to TLS 1.1

[Jörg Thalheim]

https://bugs.kde.org/show_bug.cgi?id=394769

            Bug ID: 394769
           Summary: STARTTLS is restricted to TLS 1.1
           Product: kimap
           Version: git
          Platform: Other
                OS: All
            Status: UNCONFIRMED
          Severity: normal
          Priority: NOR
         Component: general
          Assignee: kdepim-bugs at kde.org
          Reporter: joerg.kde at thalheim.io
  Target Milestone: ---

KImap makes the assumption that TLSv1 is equal to STARTTLS

https://github.com/KDE/kimap/blob/35464c7fd3858d70c8ac0558ecece216e3a95398/src/loginjob.cpp#L254

This is incorrect as STARTTLS is independent from the protocol version used for
cryptography.
In turn it is not possible to use newer TLS version such as v1.1 or v1.2.
Also it is not possible to use TLS 1.0 on ports without STARTTLS.

A workaround at the moment is to enable imaps (imap without STARTTLS) on a
different port to allow modern TLS version.

-- 
You are receiving this mail because:
You are the assignee for the bug.