Description of problem:
postfix in RHEL6 supports TLSv1.1 & TLSv1.2 when using the more recent openssl library. Unfortunately there is no mechanism to control either of these, either as explicit or as exclusions
Version-Release number of selected component (if applicable):
Created attachment 1164096 [details]
The fix is easy and should be harmless.
Scratch build for testing:
smtpd_tls_mandatory_protocols = TLSv1.2, !TLSv1, !TLSv1.1, !SSLv2, !SSLv3
And TLSv1.2 is only used if STARTTLS is initiated.
Works :) , well done.
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.
For information on the advisory, and where to find the updated
files, follow the link below.
If the solution does not work for you, open a new bug report.