ssl default

stomach · Jan 8, 2024

For everyone to be able to send emails, do I need to change any settings below?

openssl_options = +no_sslv2 +no_sslv3 +no_tlsv1 +no_tlsv1_1 +cipher_server_preference
tls_require_ciphers = ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305

HE-RSA-AES256-GCM-SHA384

HE-RSA-AES128-GCM-SHA256
h

in whm/cpanel I change these parameters to +no_sslv2 +no_sslv3

and ciphers

ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305

HE-RSA-AES128-GCM-SHA256

HE-RSA-AES256-GCM-SHA384

HE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA

HE-RSA-AES128-SHA256

HE-RSA-AES256-SHA256:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA

Active8 · Jan 8, 2024

Generating with standard DA SSL certificate setting should be fine, don't have to change anything

stomach · Jan 8, 2024

It's just that with "DEFAULT" email
It doesn't work in Outlook but it works in Thunderbird.

Active8 · Jan 8, 2024

stomach said:
It doesn't work in Outlook but it works in Thunderbird.

I can assure you that created/generated certificates works perfectly with outlook or thunderbird.
Probably you have other issues with your email setup.

stomach said:
It's just that with "DEFAULT" email

I see now several threads from you regarding default email , did you mean [email protected] where the login name is you DA login name ?

stomach · Jan 8, 2024

yes...

Active8 said:
I see now several threads from you regarding default email , did you mean [email protected] where the login name is you DA login name ?

yes

Active8 · Jan 8, 2024

Just test it special for you

1. go to roundcube/webmail
2. fill as username your DA login name (without @domain.com)
3. use your DA password
4/ enjoy!

stomach · Jan 8, 2024

worked !

Active8 · Jan 8, 2024

Nice, please change the head as solved and try not to spam the forum with the same questions

Richard G · Jan 8, 2024

stomach said:
worked !

In the other thread, you have another solution, so you can change so the users can login with their full email address as many users will not remember to only use username.

stomach · Jan 8, 2024

thank you very much Richard

ssl default

stomach

Verified User

Active8

Verified User

stomach

Verified User

Active8

Verified User

stomach

Verified User

Active8

Verified User

stomach

Verified User

Active8

Verified User

Richard G

Verified User

stomach

Verified User