Hi
a remote server which was able to send us mail using
P=esmtps X=TLSv1:DHE-RSA-AES256-SHA:256 , after upgrading to Exim 4.93 +
OpenSSL 1.1.1d is no longer able to send mail to us, logging this error:
(SSL_accept): error:14209102:SSL
routines:tls_early_post_process_client_hello:unsupported protocol
# openssl ciphers -v | awk '{print $2}' | sort | uniq
SSLv3
TLSv1
TLSv1.2
TLSv1.3
and
openssl_options = +no_sslv2 +no_sslv3
looking at the logs there is no smtps connection with TLS lower than
1.2, is this something due to Exim configuration ?
adding
openssl_options = +no_sslv2 +no_sslv3 -no_tlsv1_1 -no_tlsv1
seems to have no effect
--
Thanx & best regards ...
----------------------------------------------------------------
David Saez
On-Line Services 2000 S.L.
http://www.ols.es
----------------------------------------------------------------
