On Tue, Jun 06, 2023 at 08:21:38AM -0400, PGNet Dev via Postfix-users wrote:

>       postconf mail_version
>               mail_version = 3.8.1
> 
> on
> 
>       lsb_release -rd
>               Description:    Fedora release 38 (Thirty Eight)
>               Release:        38

The Fedora crypto policies apply to both servers and clients.  Your
client doing the tests is almost certainly using the default SECLEVEL=2,
which disables TLSv1 and TLSv1.1.  If you configure the client to also
allow these protocols, the test will work as expected.  The problem is
not on the Postfix end.

Note that Postfix ">=TLS..." syntax explicitly sets the minimum protocol
level, overriding any config file defaults (including crypto policy).

-- 
    Viktor.
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org

Reply via email to