I am trying to list what ciphers our Postfix MTA supports over STARTTLS using
If I do not specify
How do I get a list of ciphers that the MTA actually uses from the MTA?
sslscan
:
Code:
sslscan --starttls-smtp mx31.harte-lyne.ca:25
Version: 1.11.12
OpenSSL 1.0.2-chacha (1.0.2k-dev)
ERROR: error reading from mx31.harte-lyne.ca:25: Resource temporarily unavailable
If I do not specify
--starttls-smtp
then I get this:
Code:
sslscan mx31.harte-lyne.ca:25
Version: 1.11.12
OpenSSL 1.0.2-chacha (1.0.2k-dev)
Connected to 216.185.71.31
Testing SSL server mx31.harte-lyne.ca on port 25 using SNI name mx31.harte-lyne.ca
TLS Fallback SCSV:
Server does not support TLS Fallback SCSV
TLS renegotiation:
Session renegotiation not supported
TLS Compression:
Compression disabled
Heartbleed:
TLS 1.2 not vulnerable to heartbleed
TLS 1.1 not vulnerable to heartbleed
TLS 1.0 not vulnerable to heartbleed
Supported Server Cipher(s):
How do I get a list of ciphers that the MTA actually uses from the MTA?