somewhat Off topic, Sendmail Issue
Daniel Feenberg
feenberg at nber.org
Wed Oct 12 16:30:47 UTC 2011
On Wed, 12 Oct 2011, Dean E. Weimer wrote:
> I know this is a Sendmail issue, but I haven't been able to track down any
> information online, or found any Sendmail user email lists yet. And since I
> am running it on a FreeBSD server, I thought I would try here and see if
> anyone knows the answer to my problem.
>
> I have enabled SSL on SMTP to enable the delivery and reception of TLS
> encrypted emails, the server is going to be used as a relay between a MS
> Exchange server and an external Spam filtering service that has an encrypted
> email sending application that strips attachments and creates a password
> protected HTTPS link based on keywords in the subject.
>
> Everything works as expected, but when I test the server against required PCI
> scans, it accepts weak encryption ciphers, I need to limit these ciphers.
> After a lot of extensive searching I have found references to the fact that
> it is possible to configure Sendmail to do this, but I can't find any
> documentation on how to do it.
>
There is an active Usenet group at comp.mail.sendmail.
Does the ENCR parameter documented at
http://www.sendmail.org/m4/starttls.html
do you any good? It doesn't restrict the method, only the number of bits
in the key.
Daniel Feenberg
More information about the freebsd-questions
mailing list