Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 4534 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL Cipher Exchange Method when connecting to smtps

AndiB.
Hi,

I'm using a sophos utm 9 with smtp proxy. Things are working great so far. 

I checked the provided ciphers when connecting via port 465.

this was my command:
openssl s_client -cipher 'EECDH+ECDSA+AESGCM EECDH+aRSA+AESGCM EECDH+ECDSA+SHA256 EECDH+aRSA+RC4 EDH+aRSA EECDH RC4 !aNULL !eNULL !LOW !3DES !MD5 !EXP !PSK !SRP !DSS' -connect my.domain:465

This is the cipher, which is used.

>>>
SSL-Session:
    Protocol  : TLSv1
    Cipher    : RC4-SHA


This thread was automatically locked due to age.
Parents
  • 0
    You can google on site:astaro.org/gateway-products/mail-protection-smtp-pop3-antispam-antivirus TLS cert and find that others have changed the certificate, but your question is beyond anything discussed here.  I haven't experimented with this to see if the UTM can deal with a TLSv1.2 cipher or how widespread is the acceptance of it, but my guess is that everything should work fine.  That's an interesting question to submit to Sophos Support if you're doing this for your business.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Reply
  • 0
    You can google on site:astaro.org/gateway-products/mail-protection-smtp-pop3-antispam-antivirus TLS cert and find that others have changed the certificate, but your question is beyond anything discussed here.  I haven't experimented with this to see if the UTM can deal with a TLSv1.2 cipher or how widespread is the acceptance of it, but my guess is that everything should work fine.  That's an interesting question to submit to Sophos Support if you're doing this for your business.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Children
No Data
Unfiltered HTML