Viktor Dukhovni wrote the following on 21.10.2013 17:30: > This organization uses SHA256 signatures for their certificates, even > though these are not widely supported.
Ah, OK, thanks for the explanation. > The most recent patch levels > of Postfix 2.7, 2.8, 2.9 and 2.10 have support for SHA256 turned for > SSL/TLS. postfix 2.8.5 is available as a backport for Ubuntu 10.04 LTS. I've suggested upgrading to that, since it should be rather painless. Persuading the decision makers to upgrade the OS will be somewhat more difficult. > You need to upgrade to one of these, may as well be 2.10.2, but > one of the others will suffice, see http://www.postfix.org/download.html Thanks for the suggestion. We prefer to stick with packaged and supported software where possible, though, as is probably the case in many corporate settings. Not my decision to make. But I do very much appreciate your suggestions, don't get me wrong. :) Cheers, Tobias
