Hi, >> It's not >> possible to figure out which ciphers are offered to TLS clients on my >> server? > > It is possible, but you will most likely shoot yourself in the foot if > you try to use this information to adjust Postfix settings. > > The Postfix defaults are chosen carefully, and act a barrier between > shotgun and foot. What real problem are you trying to solve.
Well, I'm now really just trying to better understand what it all means. I'm sure to think I could do a better job than postfix itself would be a mistake. Where did postfix get the information to make its decision? I don't see how it put together that chain of encryption and authentication to build the tunnel. Thanks, Alex
