Am 06.06.25 um 11:55 schrieb Viktor Dukhovni via Exim-users:
Perhaps, Exim disables the "kRSA" ciphers/
I pretty sure, you are right about the RSE Kx limitation , but s_client
should enforce that too???
You're still muddled.
No, not any longer \o/ : Found it.
In my case, sending mails out was using 'HIGH' asĀ cipherlist, but even
'DEFAULT' would not allow the connection. So s_client just allows all
ciphers for testing, which makes sense for a test tool.
your example of openssl s_client saved me a lot of time searching for
the right argument on s_client, so thanks man.
btw: My usage of the term "using" was not meant to mean "part of
protocol" , it simply refered to fact, that in the real happening
connection, it was never actually used, and we now know why.
--
## subscription configuration (requires account):
## https://lists.exim.org/mailman3/postorius/lists/exim-users.lists.exim.org/
## unsubscribe (doesn't require an account):
## exim-users-unsubscr...@lists.exim.org
## Exim details at http://www.exim.org/
## Please use the Wiki with this list - http://wiki.exim.org/
