[Dovecot] SSL Cipher Order in Dovecot
Marc Grooz
marc at grooz.de
Fri Aug 23 22:30:12 EEST 2013
Hi,
I want that dovecot uses PFS with my Apple Devices. I set the Cipher List to:
ssl_cipher_list = DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:!aNULL:!eNULL:!LOW:!3DES:!MD5:!EXP:!CBC:!PSK:!SRP:!DSS:!SSLv2:!RC4
I got this from here: http://www.kuketz-blog.de/perfect-forward-secrecy-mit-apple-mail/
But then my only Outlook 2010 Client won't connect. If i enable rsa-aes128-SHA again on third place all clients connect without dhe. Dosen't dovecot horner the Cipher Order in the config?
Kind regards
Marc
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 6091 bytes
Desc: not available
URL: <http://dovecot.org/pipermail/dovecot/attachments/20130823/4888166c/attachment.bin>
More information about the dovecot
mailing list