# bug 508552
--- doc/example-config/conf.d/10-ssl.conf	2013-11-24 13:37:39.000000000 +0000
+++ doc/example-config/conf.d/10-ssl.conf	2014-05-12 14:42:26.000000000 +0000
@@ -51,6 +51,15 @@
 # SSL ciphers to use
 #ssl_cipher_list = ALL:!LOW:!SSLv2:!EXP:!aNULL
 
+# ##########################################
+# You are strongly encouraged to change the above two settings to
+#
+#ssl_protocols = !SSLv2 !SSLv3
+#ssl_cipher_list = ALL:!EXPORT:!LOW:!MEDIUM:!aNULL:+RC4:@STRENGTH
+#
+# if you are not required to support legacy mail clients.
+# ##########################################
+
 # Prefer the server's order of ciphers over client's.
 #ssl_prefer_server_ciphers = no