On Sat, Jun 22, 2019 at 07:38:32PM +0200, Benny Pedersen wrote:
> Security Admin (NetSec) skrev den 2019-06-22 19:34:
>
> > Jun 22 10:31:19 mailgate postfix/smtpd[7180]: warning: TLS library
> > problem: error:14094417:SSL routines:ssl3_read_bytes:sslv3 alert
> > illegal parameter:../ssl/record/r
> On Jun 22, 2019, at 1:30 PM, Benny Pedersen wrote:
>
>> What is the correct procedure to disable TLS 1.3 negotiation on postfix?
>
> why ?
>
> i am not an expert, [...]
Best to hold back in that case... The right answer is:
http://www.postfix.org/postconf.5.html#smtpd_tls_protocols
Jun 22 10:31:19 mailgate postfix/smtpd[7180]: setting up TLS connection from
mail-wr1-f42.google.com[209.85.221.42]
Jun 22 10:31:19 mailgate postfix/smtpd[7180]:
mail-wr1-f42.google.com[209.85.221.42]: TLS cipher list
"aNULL:-aNULL:HIGH:MEDIUM:+RC4:@STRENGTH"
Jun 22 10:31:19 mailgate postfix/smt
Security Admin (NetSec) skrev den 2019-06-22 19:34:
Jun 22 10:31:19 mailgate postfix/smtpd[7180]: warning: TLS library
problem: error:14094417:SSL routines:ssl3_read_bytes:sslv3 alert
illegal parameter:../ssl/record/rec_layer_s3.c:1528:SSL alert number
47:
this is a ssl3 disabled in openssl pr
Security Admin (NetSec) skrev den 2019-06-22 19:15:
What is the correct procedure to disable TLS 1.3 negotiation on
postfix?
why ?
i am not an expert, but i think you will not get that to work well, imho
show logs for the problem to get more help
What is the correct procedure to disable TLS 1.3 negotiation on postfix?
