Thanks for responding. I don't see a place in my .mc file to put the ciphers, maybe I am missing something. I will see if changing the openssl config helps any.
On Fri, 24 Jan 2020 09:55:36 -0500, Johann Klasek wrote: > > On Fri, Jan 24, 2020 at 07:00:04AM -0500, John Covici via mailop wrote: > > Thanks a lot for responding. > > hmmm, I put the cipherlists you mentioned in my access database using > > tls_clt_features CipherList= ... and I even put tls_server_features > > Better put it in the configuration file, .mc/.cf. > > > with those ciphers but no joy. My openssl version is 1.1.1d-0+deb10u2 > > and has not been updated since October. > > Maybe they raised the lower limit of acceptable ciphers. Found some > posting around they recommend to set CipherString = DEFAULT@SECLEVEL=2 > in /etc/ssl/openssl.cnf > > (like in https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=907788) > > Johann > -- Your life is like a penny. You're going to lose it. The question is: How do you spend it? John Covici wb2una cov...@ccs.covici.com _______________________________________________ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
