Logout

Alt-N Discussion Groups > MDaemon Discussion Groups > MDaemon Support > Archive > MDaemon 11 and TLS 1.2

[F] Alt-N Discussion Groups / MDaemon Discussion Groups / MDaemon Support / Archive /

MDaemon 11 and TLS 1.2

[Belov, Sergey]
Sergey Belov
Newbie
Newbie
Posts: 2
Sergey Belov - 06:05pm, Nov 13 2020

I have MDaemon 11.0.4 running at Windows Server 2008 R2 SP1.
KB3140245 installed. TLS 1.2 activated in a registry:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001

But MDaemon uses only TLS 1.0 not 1.2. I checked it by Qualys and OpenSSL (openssl s_client -tls1_2 -starttls smtp -crlf -connect 127.0.0.1:25).

I find a similar problem: David C, "some emails blocked" #1, 8 Nov 2019 4:41 pm
David C said: "MDaemon does not control the versions of SSL or the protocols, ciphers, hashes, and key exchange algorithms used in network connections to email clients and other mail servers."

Is it possible to use TLS 1.1 and TLS 1.2 in MDaemon 11.0.4? Or I should upgrade to MDaemon 14.5 or newer?

  All MessagesOldest ItemsOlder ItemsNewer ItemsNewest Items

Arron Caruth - Nov 13, 2020 7:42 pm (#1 Total: 2)  

Guest User  

Photo of Author
Posts: 1

You need to upgrade to MDaemon 14.5.0 or newer.  TLS 1.2 support was not added until version 14.5.0.

 

 

--
Arron Caruth
Vice President of Product Development
o: 817-601-3222    e: Arron.Caruth@mdaemon.com

MDaemon Technologies
Simple Secure Email
Visit us on www.mdaemon.com | Facebook | LinkedIn | YouTube
Sent using the MDaemon Email Server

From: md-support@mdaemon.com [mailto:md-support@mdaemon.com] On Behalf Of lists-md-support@mdaemon.com (Sergey Belov)
Sent: Friday, November 13, 2020 5:06 PM
To: md-support@mdaemon.com
Subject: [md-support] MDaemon 11 and TLS 1.2

 

I have MDaemon 11.0.4 running at Windows Server 2008 R2 SP1.
KB3140245 installed. TLS 1.2 activated in a registry:
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Client]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.2\Server]
"DisabledByDefault"=dword:00000000
"Enabled"=dword:00000001

But MDaemon uses only TLS 1.0 not 1.2. I checked it by Qualys and OpenSSL (openssl s_client -tls1_2 -starttls smtp -crlf -connect 127.0.0.1:25).

Is it possible to use TLS 1.1 and TLS 1.2 in MDaemon 11.0.4? Or I should upgrade to MDaemon 14.5 or newer?

View/reply at MDaemon 11 and TLS 1.2

 
 
--MD-SUPPORT--------------------------------------------------------------
This list is for questions and discussion about MDAEMON. To unsubscribe 
from this mailing list send an email to md-support-unsubscribe@mdaemon.com .
--POWERED BY MDAEMON!-----------------------------------------------------
 
--------------------------------------------------------------------------
These forums are provided by MDaemon Technologies for user-to-user 
support and discussion.  MDaemon staff members may participate in the 
forums periodically but please recognize that this is not the official
method of receiving technical support. To receive personal technical 
support please use the form here:
http://www.mdaemon.com/Support/RequestSupport/
--------------------------------------------------------------------------

--MD-SUPPORT--------------------------------------------------------------
This list is for questions and discussion about MDAEMON. To unsubscribe 
from this mailing list send an email to md-support-unsubscribe@mdaemon.com .
--POWERED BY MDAEMON!-----------------------------------------------------

--------------------------------------------------------------------------
These forums are provided by MDaemon Technologies for user-to-user 
support and discussion.  MDaemon staff members may participate in the 
forums periodically but please recognize that this is not the official
method of receiving technical support. To receive personal technical 
support please use the form here:
http://www.mdaemon.com/Support/RequestSupport/
--------------------------------------------------------------------------

Sergey Belov - Nov 14, 2020 4:41 am (#2 Total: 2)  

 

Photo of Author
Sergey Belov
Newbie
Newbie
Posts: 2
Thank you!

To help someone else google and find out this problem:

<-- 220 2.0.0 Ready to start TLS

SSL negotiation failed, error code 0x80090302

<-- 220 2.0.0 Ready to start TLS

SSL negotiation failed, error code 0x80090308

[Last Editor: Sergey Belov, Nov 14, 2020 4:48 am. Total Edits: 2]



  All MessagesOldest ItemsOlder ItemsNewer ItemsNewest Items


 Content:

Read New | Search

 Guest:

Email to Admin

You are visiting as a Guest user.