Bootstrap FreeKB - Postfix (Email) - Resolve "no shared cipher"
Postfix (Email) - Resolve "no shared cipher"

Updated:   |  Postfix (Email) articles

Let's say something like this is being returned in your Postfix email server logs.

Apr 11 06:19:49 post postfix/submission/smtpd[183561]: warning: TLS library problem: error:1417A0C1:SSL routines:tls_post_process_client_hello:no shared cipher:../ssl/statem/statem_srvr.c:2283:

 

This suggests that the client attempted a connection to your Postfix email server using an cipher that is not allowed by your Postfix email server. The smtpd_tls_protocols directive in your /etc/postfix/main.cf file will list the ciphers that are not allowed. In this scenario, you would have to check how the client is attempting to connect to your Postfix email server and then have the client make the connection using a protocol that Postfix allows.

smtpd_tls_protocols = !SSLv2,!SSLv3,!TLSv1,!TLSv1.1

 




Did you find this article helpful?

If so, consider buying me a coffee over at Buy Me A Coffee



Comments


Add a Comment


Please enter f68f75 in the box below so that we can be sure you are a human.