> On May 20, 2025, at 07:43, Viktor Dukhovni via Postfix-users > <postfix-users@postfix.org> wrote: > > On Tue, May 20, 2025 at 08:26:37AM -0400, Wietse Venema via Postfix-users > wrote: > >>> We're in the process of trolling all our logs to figure out what we can >>> ignore/filter/take action on, and we have a couple entries that I'm >>> wondering what's happening under the hood: >>> > > The remote SMTP client's list of TLS 1.2 supported ciphers did not overlap > with the > list supported by the SMTP server:
This one I kind of suspected. Interestingly, since the fallback method is “plaintext” this is effectively just noise. > The remote SMTP client reported not liking the server certificate (sent > an alert to that effect): That was the bit that confused me — if we’re seeing an alert that says bad certificate, is it because we’re misconfigured on our end? I’m sure we’re not asking for client certs, and as far as I know there’s no way to present one if we’re not asking. I wasn’t aware there was a signaling method to say “I don’t like it, go away”. Thanks as always for what you folks do. -Dan _______________________________________________ Postfix-users mailing list -- postfix-users@postfix.org To unsubscribe send an email to postfix-users-le...@postfix.org
