Hello @Xojo
ist the Fix for the Bug (https://xojo.com/issue/39516)] SMTPSecureSocket falls back to insecure with TLS included in the new Xojo 2.3 Release?.
Because there is no mentioning of it in the Release Notes.
Best Regards,
R. Landscheidt
It’s not verified, so it’s probably not in the release.
And the link above is broken. Case 39516.
So Link fixed.
yes. i’ve seen that. i hoped that they simply forgot to update the case. because the fix has been in verification for a long time now. (especialy wihle it is such an security critical error)
Well then gona need to rewrite the Send method now to primaryly use curlmbs.
SSL3 Encryption for this SMTP Server (where i need the SMTPSecureSoket with TLS) will be disabled soon.
Interesting Point:
Some of the cases marked for this release (xoj 2015 r2.3) also are only marked as ‘fixed’ in feedback.
I changed my apps months ago, so I’m fine.
And with my own plugin I can both verify that it uses TLS encryption (via reading debug messages) and apply fixes myself.
[quote=206132:@RenLandscheidt]Hello @Xojo
ist the Fix for the Bug (https://xojo.com/issue/39516)] SMTPSecureSocket falls back to insecure with TLS included in the new Xojo 2.3 Release?.
Because there is no mentioning of it in the Release Notes.
Best Regards,
R. Landscheidt[/quote]
It is not. The bug fixes in 2015r2.3 needed to be considered very safe by the engineers, with very little chance of side effects because of the short release cycle. We wanted more that two days of testing on the SMTP fix.