2015-05-22 3:29 GMT+02:00 Claus Assmann <[email protected]>: > On Thu, May 21, 2015, Peter van Oord van der Vlies wrote: > > > When receiving mail i sometimes get this error when sendmail is > configured > > with starttls. > > > STARTTLS=server, error: accept failed=-1, reason=no shared cipher, > ^^^^^^^^^^^^^^^^ > > "receiving mail" from which hosts? > > Can you find out which SW / TLS version they use? > > Did you restrict the cipherlist? >
This is what i use in my mc file : LOCAL_CONFIG O CipherList=HIGH O ServerSSLOptions=+SSL_OP_NO_SSLv2 +SSL_OP_NO_SSLv3 +SSL_OP_CIPHER_SERVER_PREFERENCE O ClientSSLOptions=+SSL_OP_NO_SSLv2 +SSL_OP_NO_SSLv3
