On Mon, Jan 17, 2011 at 02:32:42AM +0100, Mark Scholten wrote:
> > That's my take. Previous hop mta name comments include:
> >
> > - Exim 4.72 #3
> > - Websense Email Security (7.3.0)".
> > - XWall v3.46h
> > - SonicWALL 7.3.0.4387
> > - 8.13.8/8.13.8/SuSE Linux 0.8
> >
> > The diversity is a bit low, but the clients are not exclusively
> > Postfix.
>
> Do I see it correctly that I'm missing Exchange (or the SMTP included with
> Microsoft Exchange)? That is the last "bigger" mailserver I know (besides
> sendmail) that is missing I think. I can probably get a test environment
> with Microsoft Exchange and with Sendmail to test it if the information
> might be useful.
Exchange will most likely not use ECDH key-agreement ciphers unless you
have an extremely recent Windows platform (I don't know whether this has
been released) whose CryptoAPI supports EECDH key-exchange. It will work
just fine, but the ciphersuite used will be more traditional.
My report lists only systems that actually use kEECDH (OpenSSL class name)
ciphers. All the others successfully use something else.
--
Viktor.
