On Fri, Jan 24, 2020 at 07:00:04AM -0500, John Covici via mailop wrote: > Thanks a lot for responding. > hmmm, I put the cipherlists you mentioned in my access database using > tls_clt_features CipherList= ... and I even put tls_server_features
Better put it in the configuration file, .mc/.cf. > with those ciphers but no joy. My openssl version is 1.1.1d-0+deb10u2 > and has not been updated since October. Maybe they raised the lower limit of acceptable ciphers. Found some posting around they recommend to set CipherString = DEFAULT@SECLEVEL=2 in /etc/ssl/openssl.cnf (like in https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907788) Johann _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
