[exim] TLSv1 not supported ?

Top Page

Reply to this message
Author: David Saez Padros
Date:  
To: EXIM mailing list
Subject: [exim] TLSv1 not supported ?
Hi

a remote server which was able to send us mail using
P=esmtps X=TLSv1:DHE-RSA-AES256-SHA:256 , after upgrading to Exim 4.93 +
OpenSSL 1.1.1d is no longer able to send mail to us, logging this error:

(SSL_accept): error:14209102:SSL
routines:tls_early_post_process_client_hello:unsupported protocol

# openssl ciphers -v | awk '{print $2}' | sort | uniq
SSLv3
TLSv1
TLSv1.2
TLSv1.3

and

openssl_options = +no_sslv2 +no_sslv3

looking at the logs there is no smtps connection with TLS lower than
1.2, is this something due to Exim configuration ?

adding

openssl_options = +no_sslv2 +no_sslv3 -no_tlsv1_1 -no_tlsv1

seems to have no effect

--
Thanx & best regards ...

----------------------------------------------------------------
    David Saez
    On-Line Services 2000 S.L.
    http://www.ols.es
----------------------------------------------------------------