On 24.10.18 16:56, Burn Zero wrote:
>Yea, I got it. But even with that configuration when I connect to my
>server, my server is still accepting connections in TLSv1. If I disable
>TLSv1 in my server,
>
>warning: TLS library problem: 21975:error:140760FC:SSL
>routines:SSL23_GET_CLIENT_HELLO:unknown protocol:s23_srvr.c:578:
On Wed, Oct 24, 2018 at 5:01 PM Matus UHLAR - fantomas <uh...@fantomas.sk>
wrote:
which OS/distribution do you use?
On 24.10.18 17:50, Burn Zero wrote:
I use CentOS 6.5
I haven't find centos 6.5 nor redhat 6.5 here, but on one of our redhat 6.4
servers the postconf says:
smtpd_tls_mandatory_protocols = SSLv3, TLSv1
so, apparently, when connecting to your server, tls1.1 and 1.2 are not
enabled. try:
smtpd_tls_mandatory_protocols=!SSLv2,!SSLv3
maybe this will allow new tls protocols and explain the issue.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety. -- Benjamin Franklin, 1759
