Hello, I am aware that this is not an error on Postfix’s fault, but I found the following entry in one of mail server’s logs confusing. I am using Postfix 3.3.0:
Oct 21 06:09:51 server postfix/smtpd[31405]: Anonymous TLS connection established from unknown[77.120.120.29]:33126: TLSv1 with cipher AES256-SHA (256/256 bits) From what I gather, a TLS v1.0 connection was made with AES256 for the symmetric cipher and SHA-1 for integrity, but: — There is neither DH/DHE/ECDHE at the start. What public key negotiation was done ? — There is no mode for AES256 (neither old CBC or newer, recommended GCM). What mode was used ? Thanks, - J