Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.
Dismiss

TLS Library error when using TLSv3 only

20 views
Skip to first unread message

Dan Randa

unread,
Mar 2, 2023, 5:45:24 PM3/2/23
to
I am running Postfix v3.4.13 on Ubuntu Server 20.04. I am getting a tls libarary error in my logs. I am running the server as a TLSv1.3 email server.
----------------------------------------------------------------------------------------------------------------------
Mar 2 16:32:18 mail postfix/smtps/smtpd[56916]: SSL_accept error from unknown[46.148.40.152]: -1
Mar 2 16:32:18 mail postfix/smtps/smtpd[56916]: warning: TLS library problem: error:14209102:SSL routines:tls_early_post_process_client_hello:unsupported protocol:../ssl/statem/statem_srvr.c:1685:
----------------------------------------------------------------------------------------------------------------------

My main.cf relevant settings are:
----------------------------------------------------------------------------------------------------------------------
#Enforce TLSv1.3 only (remove "!TLSv1.2" to enforce TLSv1.2 also)
smtpd_tls_mandatory_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1, !TLSv1.2
smtpd_tls_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1, !TLSv1.2
smtp_tls_mandatory_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1, !TLSv1.2
smtp_tls_protocols = !SSLv2, !SSLv3, !TLSv1, !TLSv1.1, !TLSv1.2
----------------------------------------------------------------------------------------------------------------------

How can i fix this error so my clients can connect? I'm using Apple mail.
0 new messages