On Tue 15.10.13 15:18:06 Viktor Dukhovni wrote:
> The server in question is a Microsoft Exchange server with buggy 3DES
> ciphersuites (IIRC found in Windows XP, and perhaps Windows Server 2003).
>
> Add "exclude=3DES" to the entry table for this server, and you'll likely
> be fine. You probably
On Wed 16.10.13 10:29:21 Michael Büker wrote:
> I might still combine the sender_dependent_default_transport_maps with my
> sender_dependent_relayhost_maps so I don't have to maintain both files. Come
> to think of it: Couldn't I combine the single line in smtp_tls_policy_maps
> into the transpor
On Oct 16, 2013, at 10:29, Michael Büker wrote:
> Now, everything works. Phew.
>
> I might still combine the sender_dependent_default_transport_maps with my
> sender_dependent_relayhost_maps so I don't have to maintain both files. Come
> to
> think of it: Couldn't I combine the single line in
On Wed, Oct 16, 2013 at 10:29:21AM +0200, Michael B?ker wrote:
> > Add "exclude=3DES" to the entry table for this server, and you'll likely
> > be fine. You probably don't need to tweak the protocols.
>
> Adding "exclude=3DES" or "exclude=DES-CBC3-SHA" to the smtp_tls_policy_maps
> file didn't
Hello,
Am 2013-10-14 14:12, schrieb Dan Langille:
I have a group of Postfix servers. I want communications between these
servers to be TLS and clients must present a known certificate.
These servers are also public-facing and accept incoming mail from
servers not under my control.
I just start
On Wed, Oct 16, 2013 at 07:52:42PM +0200, Marko Weber | ZBF wrote:
> > Accept incoming mail only if these certs are presented:
> >
> > # cat /usr/local/etc/postfix-config/relay_clientcerts
> > 11:22:33:44:55:66:77:88:99:AA:BB:CC:DD:EE:FF:00:11:22:33:44 a.example.org
> > 11:22:33:44:55:66:77:88:99:
On 10/16/2013 04:03 AM, Blake Hudson wrote:
>
> Thanks for the reminder about where to locate the test programs Wietse.
> I confirmed this appears to be an issue with RHEL5 (all patches applied
> today). The issue is resolved in RHEL6. I am running a local instance of
> BIND (bind-9.3.6-20.P1.el5_
