Detailed information for the notes.ini Keyword: 

SSL_ENABLE_INSECURE_SSLV2_HELLO


Short Description: Enable the unsecure sslv2 protocoll

Description:
Re-enabling SSLv2 has become necessary because since applying the POODLE fixes, which removed support for SSLv2, SMTP connection attempts from either clients, servers, and JVMs with outdated SSL fail with the following error: SSL_Handshake> Exit Status = -6996 int_MapSSLError> Mapping SSL error -6996 to 4166 [SSLProtocolErr You can set the following notes.ini variable to permit these less secure connections. However, note that we strongly advise against setting this variable unless you absolutely need to interoperate with an outdated SSL client that refuses to upgrade their software or configuration. SSL_ENABLE_INSECURE_SSLV2_HELLO =1 This .INI variable will (1) allow SSLv2 ClientHello messages, as long as they negotiate up to a supported version of SSL/TLS, and (2) provide an increased level of tracing to help admins identify where the outdated connections are coming from.





Default value:
None

Syntax:
SSL_ENABLE_INSECURE_SSLV2_HELLO=0/1

Example:
SSL_ENABLE_INSECURE_SSLV2_HELLO=1

Applies to:
Server


Valid for version:
9.0.1.3