SendMail 8.14.x
With SSLv3 being sunset (to put it lightly), I'd like to ensure that my SendMail servers aren't using it when establishing STARTTLS connections. Is there a way I can force SendMail to NOT use SSLv3?
Asked
Active
Viewed 274 times
1 Answers
2
I've not tested this as I use posftix but I've seen in my reading the following:
CipherList=HIGH
ServerSSLOptions=+SSL_OP_NO_SSLv2 +SSL_OP_NO_SSLv3 +SSL_OP_CIPHER_SERVER_PREFERENCE
ClientSSLOptions=+SSL_OP_NO_SSLv2 +SSL_OP_NO_SSLv3
Not sure which version this references but appears you control what ciphers are in use both when sendmail acts as a client and as a server.
jeffatrackaid
- 4,112
- 18
- 22