* Wietse Venema <wie...@porcupine.org>: > Victor Duchovni: > > I've been running with "smtpd_tls_eecdh_grade = strong" with Postfix > > 2.7 for a while now. No problems to report. Approximately 24,000 EECDH > > sessions a week. Of these approximately 75% use AECDH-AES256-SHA, and ~25% > > use ECDHE-RSA-AES256-SHA. > > > > Perhaps with 2.9 we can finally "mainstream" server-side eecdh support. > > Assuming that these aren't all Postfix-to-Postfix sessions, that would > mean EECDH is burned in by now.
I just investigated this, and the only sites that seem to use EECDH are sites running Postfix. Anecdotal evidence from several smallish, private mail servers. Stefan
