Today I upgraded to postfix 2.9.3-2~12.04.1. I can't tell whether or not I am still affected by this bug.
I have commented out from main.cf the temporary workaround that I have been using since the problem first appeared in May 2012 ("smtpd_tls_exclude_ciphers = RC4-MD5").
I have sent myself three test emails from Gmail, but on none of these emails has the sender tried using the RC4-MD5 cipher. (All three have used ECDHE-RSA-RC4-SHA .
Scott (or others): Is there a way I can configure postfix to accept *only* the RC4-MD5 cipher? I'm willing to change my postfix configuration to something goofy for a few minutes so that I can send myself another test email.
Today I upgraded to postfix 2.9.3-2~12.04.1. I can't tell whether or not I am still affected by this bug.
I have commented out from main.cf the temporary workaround that I have been using since the problem first appeared in May 2012 ("smtpd_ tls_exclude_ ciphers = RC4-MD5").
I have sent myself three test emails from Gmail, but on none of these emails has the sender tried using the RC4-MD5 cipher. (All three have used ECDHE-RSA-RC4-SHA .
Scott (or others): Is there a way I can configure postfix to accept *only* the RC4-MD5 cipher? I'm willing to change my postfix configuration to something goofy for a few minutes so that I can send myself another test email.