Koozali.org: home of the SME Server

Obsolete Releases => SME Server 9.x => Topic started by: mmccarn on October 22, 2015, 01:10:06 PM

Title: Thunderbird and cipher to use.
Post by: mmccarn on October 22, 2015, 01:10:06 PM: A thunderbird update that installed itself on my systems between 10/6 and 10/7 started failing the process of negotiating the cipher to use.

I found the problem by looking at the 'Error Console' in Thunderbird (Tools -> Error Console). Other than the error in the error console there was no indication of any problem - Thunderbird would say 'connected to...' my server in the lower left corner, but no mail would come in.

I had customized the 'CipherSuite' on my server in order to get the highest possible score on the Qualys SSL Server Test (https://www.ssllabs.com/ssltest/). I had to relax the settings in order to get Thunderbird to work again (I had RC4 disabled, after I re-enabled it Thunderbird started working again).

I was making my changes using 'config setprop modSSL CipherSuite ....', but I think I could have set a different ciphersuite for qpsmtpd without changing the webserver settings using 'config setprop qpsmtpd tlsCipher ...'

SMF 2.0.19 | SMF © 2021, Simple Machines
Privacy Policy | Terms and Policies