[server-admins] TSL versions
Manfred Bergmann
manfred.bergmann at me.com
Mon Mar 11 03:03:31 MST 2019
Hi.
For Postfix this disallowed everything except TLSv1.2.
Config file is: /etc/postfix/main.cf
smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1
smtpd_tls_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1
smtp_tls_mandatory_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1
smtp_tls_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1
> Am 11.03.2019 um 10:34 schrieb Peter von Kaehne <refdoc at gmx.net>:
>
> Dear all,
>
> Currently our mail server uses TSL1.0 as protocol. It took me a while
> to realise that this is the reason I can not download my email when I
> used today a different computer. Allowing TSL 1.0 instead of the
> nowadays expected 1.2 as minimum protocol allows again download.
>
> I think I had already downgraded the expectation of my normal laptop a
> while ago, but had not then mentioned this here on this list.
>
> I do not think that 1.0 is very safe. More importantly if Debian moves
> towards eliminating 1.0 use, I guess others will too.
>
> What can be done on the server side to fix this?
>
> Yours
>
> Peter
>
>
> _______________________________________________
> server-admins mailing list
> server-admins at crosswire.org
> http://www.crosswire.org/mailman/listinfo/server-admins
More information about the server-admins
mailing list