SSL_accept error - Cipher insufficiently secure?


I have some issues with configuring clients (Outlook - smtp server cannot be configured - SSL_accept error) with our Virtualmin server.
I added the following lines to to disable the insecure TLS/SSL versions (is this correct, should I add other configuration?):
smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1, TLSv1.2
smtpd_tls_protocols= !SSLv2, !SSLv3, !TLSv1, !TLSv1.1, TLSv1.2
smtpd_tls_mandatory_ciphers = high

Testing shows that the Cipher is EDH-RSA-DES-CBC3-SHA.

Can you please let me know how to change the ciphers to the most secure ones (where is the configuration file where the ciphers are declared/defined)?

Thank you



Any help here?


Please help,

Can you please help?

Can you please help?

Are you sure Outlook isn’t complaining about the certificate name matching the host name?


openssl s_client -starttls smtp -connect -tls1

from a terminal somewhere and see if it connects. If it doesn’t (but it does when you set the last parm to -tls1_2), then the problem ain’t the protocol.

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.