Hello everybody, what is the rationale behind the deprecation of the setting `smtpd_tls_cipherlist`? Are there any plans to remove it entirely in some future versions?
I am looking for an option to explicitly set the list of allowed cipher suites. The deprecated setting `smtpd_tls_cipherlist` allowed that. The new setting `smtpd_tls_mandatory_ciphers` only supports to enable a selection of cipher suites by defining a lower limit on the cryptographic strength (i.e. „low“, „medium“, „high“, ...) and it seems I can additionally use `smtpd_tls_exclude_ciphers` to remove certain unwanted cipher suites subsequently. For me, that feels a little bit cumbersome. Why not provide both ways? Or did I miss something? Bests, Matthias _______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
