Hello Developers @passbolt
I don’t want to sound rough, but some things are not right with your software at this stage.
I just bought a licence of passbolt and was very surprised to find that you have an outdated SMTP library embedded in the default install of your software.
I used the default image provided for VMWare and migrated it to Proxmox (qcow3), after other bugs restrained me from installing the soft properly on Debian.
You are using SSL V3 which has known flaws and which is normally rejected by our mail server.
May 31 12:05:01 dynmail postfix/submission/smtpd: SSL_accept error from unknown[192.168.99.247]: -1
May 31 12:05:01 dynmail postfix/submission/smtpd: warning: TLS library problem: error:14094418:SSL routines:ssl3_read_bytes:tlsv1 alert unknown ca:…/ssl/record/rec_layer_s3.c:1543:SSL alert number 48:
I had to lower the authorised protocol to allow e-mail to be received by my mail server.
Furthermore Passbolt is based on PHP7.3 which is EOL and only accepts security upgrade.
I am not certain that your product can be used in a serious production environment if there is no URGENT patching applied.
Can you please confirm your plan to solve these major issues.