I don't think this can be the case on FreeBSD 13.1 (but could be wrong!).
FreeBSD 12.4 had base OpenSSL upgraded to 1.1.1q:
https://www.freebsd.org/releases/12.4R/relnotes/
so maybe that's what you are looking at?
I don't think this can be the case on FreeBSD 13.1 (but could be wrong!).
Thanks; but our systems are on 13.1-*.
# postconf | grep smtpd_tls_protocols
Done but no difference. Thanks for all you assistance.
Je regrette! I already responded to the request in #9, #14 and a few more. No difference -i.e. SSL write error persists - again and infact TLSv1.3, when added back then, made it possible to receive emails [Note: with the exception of emails from MS (outlook) servers]. I commented smtpd_tls_protocols out, made changes to it and many more. I later switched to the base OpenSSL as again requested but no luck. We are using different versions of OpenSSL, and having relied on the base version with no luck, I can only hope it will be fixed over - either via an upgrade like the XMPP/Prosody matter or any other means. One cannot rule out the possibility of a bug in one of the associated packages - Postfix, OpenSSL, etc. I use most recent versions of them.
That's the fix. MS updated their cipher for mail delivery very recently.
One may leave it in the smtp_tls_exclude_ciphers though but not smtpd_tls_exclude_cipher. MS mail delivery will work. I however removed it for both in my case.smtp_tls_exclude_ciphers=aNULL:eNULL:LOW:3DES:MD5:MEDIUM:EXPSK
