I would guess that the misbehaving clients are early openssl betas
that receive the real TLS 1.3 version and then try to interpret
as whatever draft versino they actually implemnet.
-Ben
On Thu, Oct 11, 2018 at 01:18:03PM -0400, Viktor Dukhovni wrote:
>
> Apparently, some SMTP clients set
Apparently, some SMTP clients set fallback_scsv when doing TLS 1.2
with Postfix servers using OpenSSL 1.1.1. Not yet clear whether
they tried TLS 1.3 first and failed, or just sent the SCSV out of
the blue...
See attached. If this is a common problem, it might be useful to
have a control that