mirror of
https://github.com/moparisthebest/k-9
synced 2024-11-15 22:15:15 -05:00
d84ce6ddb9
As Georg Lukas wrote in his blog post about how Android handles TLS handshake (http://op-co.de/blog/posts/android_ssl_downgrade/), an explicit order of cipher suites and TLS versions must be supplied to avoid having the weak (presumably broken) RC4 cipher at the top of the preference list. This commit adds the list included in the blog post to every TLS socket creation, including IMAP, POP3 and SMTP, see Wireshark screenshots done during testing at http://vsza.hu/k9mail-tls-hardening/ |
||
---|---|---|
.. | ||
imap | ||
ImapResponseParser.java | ||
ImapStore.java | ||
LocalStore.java | ||
LockableDatabase.java | ||
Pop3Store.java | ||
StorageManager.java | ||
TrustManagerFactory.java | ||
UnavailableAccountException.java | ||
UnavailableStorageException.java | ||
WebDavStore.java |