Re: [exim] Define preferred encryption algorithms

Top Page
This message is part of the following thread:
M+\the complete thread tree sorted by date
MMMPhillip Carroll at <-
MViktor Dukhovni at ->
Delete this message
Reply to this message
Author: Jeremy Harris
Date:  
To: exim-users
Subject: Re: [exim] Define preferred encryption algorithms
On 13/10/2019 17:51, Phillip Carroll via Exim-users wrote:
> I also tried adding '@STRENGTH' to the setting but found it produced the
> exact same order. Does exim add that, or does openssl automatically sort
> by strength?

Exim takes no special action. 

Poking around the openssl sources I find a "Changes" note:
     the definition for "DEFAULT"
     (SSL_DEFAULT_CIPHER_LIST) now is just "ALL:!aNULL:!eNULL", but
     remains equivalent  to
     "AES:ALL:!aNULL:!eNULL:+aECDH:+kRSA:+RC4:@STRENGTH"
-- 
Cheers,
  Jeremy


This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [exim] Define preferred encryption algorithmsRe: [exim] Define preferred encryption algorithms->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)