On Wed, Jan 25, 2017 at 09:44:00AM +0200, Otto Kekäläinen wrote: > Ok, this is now figured out. > > To activate YaSSL you must have 'ssl=on' in the config and no > ssl_cipher defined.
Erm, ok, but this is somewhat terrifying - I can't disable insecure and broken ciphers? I basically would consider anything < TLSv1.2 insecure and I would expect to be able to restrict even the ciphers within TLSv1.2. This is in keeping with standard practise for apache, dovecot, postfix etc etc. Matthew
