> New, TLSv1/SSLv3, Cipher is TLS_CHACHA20_POLY1305_SHA256
This cipher can only be used with TLSv1.3, so the dovecot instance does
speak TLSv1.3. (You could also verify this by using eopenssl11 instead of
openssl from base - don't forget to add -CAfile /etc/ssl/cert.pem).
>
On 2022/11/16 18:10, Stuart Henderson wrote:
> I don't use the google mail app but I do use aquamail on Android and
> that only sends a TLSv1.2 client hello (you can feed a file saved from
Just tried gmail (2022.10.16.486292356.Release, on Android 12,
1 Oct patch level) and that only sends a 1.2
On 2022/11/16 16:55, Mikolaj Kucharski wrote:
> Hi,
>
> Just making sure I didn't miss anything on my end. I have working
> Dovecot setup for few OpenBSD releases now. Today I wanted to bump
> minimal TLS version on the Dovecot end:
>
> -ssl_min_protocol = TLSv1.2
> +ssl_min_protocol = TLSv1.3
>
Hi,
Just making sure I didn't miss anything on my end. I have working
Dovecot setup for few OpenBSD releases now. Today I wanted to bump
minimal TLS version on the Dovecot end:
-ssl_min_protocol = TLSv1.2
+ssl_min_protocol = TLSv1.3
After restarting Dovecot, I see that I can connect to host:993