Comment 1 for bug 1808649

Now that courier is compiled with gnutils instead of openssl the only setting in pop3d-ssl or imapd-ssl that will limit the ciphers or protocols is the setting TLS_PRIORITY.
Example: TLS_PRIORITY="SECURE128:+SECURE192:-VERS-ALL:+VERS-TLS1.2"
You can test pop with:
nmap --script ssl-enum-ciphers -p 995 localhost
. /etc/courier/pop3d-ssl
gnutls-cli --priority="$TLS_PRIORITY" --list