Angus McIntyre a écrit le 16/12/2020 à 21:10 :
> 2048 bits ought to be enough, I would think. Most of the references to
> this problem that I was able to find suggested that it kicked in at 768
> bits and smaller. So maybe it's the remote server.
>
> The remote is e4.echonyc.com (108.60.149.50).
# openssl s_client -crlf -connect e4.echonyc.com:25 -starttls smtp -cert
/var/qmail/control/servercert.pem |grep DH
depth=3 C = GB, ST = Greater Manchester, L = Salford, O = Comodo CA
Limited, CN = AAA Certificate Services
verify return:1
depth=2 C = US, ST = New Jersey, L = Jersey City, O = T
Problem solved. My crypto policies were set to DEFAULT. Changing them to
LEGACY and rebooting fixed the issue. Thank you xaf and Eric.
Angus
xaf wrote on 12/17/20 4:07 AM:
Angus McIntyre a écrit le 16/12/2020 à 21:10 :
2048 bits ought to be enough, I would think. Most of the references to
th
