On Tue, May 13, 2014 at 04:20:37PM +0100, SW wrote:
> When I send an email (submission) from Thunderbird the logs show:
>
> postfix/submission/smtpd[77780]: Anonymous TLS connection established from
> machine.domain.com[192.168.14.120]: TLSv1.2 with cipher
> ECDHE-ECDSA-AES128-SHA (128/128 bits)
So it works.
> What I would still like to test is receiving an email from another MTA that
> supports an ECDSA cert to my server.
This is pointless. MTAs treat your certificate with equal indifference
whether it is an RSA or ECDSA certificate.
Since OpenSSL sorts aRSA ahead of aECDSA by default, you're unlikely,
in the near future, to see any MTAs that negotiate ECDSA in preference
to RSA. Of course you can configure one that does, and use it to
"test", but it is not clear what you'd be testing.
--
Viktor.
