On 2 Aug 2017, at 14:51, robg...@nospammail.net wrote:
[...
I guess RC4 is already gone. I do see some Au=SRP. No clue yet what
those are. And even though it's enabled I have never seen a CAMELLIA
cipher'd message; at least not in my logs.
With default smtpd_tls_* settings and OpenSSL 1.0.2l:
Received: from english-breakfast.cloud9.net
(english-breakfast.cloud9.net [168.100.1.7])
(using TLSv1 with cipher ADH-CAMELLIA256-SHA (256/256 bits))
(No client certificate requested)
by toaster.scconsult.com (Postfix) with ESMTPS id 3xN2Mg49Gpz1cvyFy
for <postfixlists-070...@billmail.scconsult.com>; Wed, 2 Aug 2017
14:51:11 -0400 (EDT)
Received: by english-breakfast.cloud9.net (Postfix)
id 4E12A332068; Wed, 2 Aug 2017 14:51:06 -0400 (EDT)
Delivered-To: postfix-users-outgo...@cloud9.net
[... blah blah blah ...]
Message-Id:
<1501699864.1436556.1061149504.6d611...@webmail.messagingengine.com>
From: robg...@nospammail.net
To: postfix-users@postfix.org
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Type: text/plain; charset="utf-8"
X-Mailer: MessagingEngine.com Webmail Interface - ajax-917c8476
Subject: Re: still use "aNULL:!aNULL:" in Postfix default cipherlists
when tls
policy is mandatory, == encrypt?
