On 21 Jul 2015, at 17:28, A. Schulze <s...@andreasschulze.de> wrote: >> I suspect this is a problem with either your configuration, or your TLS >> stack. Exchange 2010 should do better, even in it's default >> configuration, as the minimum OS stack is Windows Server 2008, which >> supports TLSv1 with the 'ECDHE-RSA-AES128-SHA' cipher if the relay >> server supports it. > > that's the point. the TLS stack used by the submission server isn't brand new > ...
Then it may not be the most useful datapoint for a decision on how to treat RC4 in OpenSSL 1.1 :-/ The limits imposed are not the sending server, but your own, and any problems you see might be your TLS stack. What version of OpenSSL are you using, and what is the output of 'openssl ciphers -v' with your cipher selection? Mvg, Joni
