Supported Protocols and Cipher Suites

The following are SSL/TLS protocols that can be accepted by IMSVA and cipher suites supported by IMSVA.

Supported protocols

Security Level	Protocol
Opportunistic	TLSv1
Must	TLSv1
Verify	TLSv1

Note

The SSLv3 protocol is disabled according to CVE-2014-3566. To enable SSLv3, run the following statement:

postconf -e smtpd_tls_mandatory_protocols=SSLv3,TLSv1 && postconf -e smtp_tls_mandatory_protocols=SSLv3,TLSv1 && postconf -e smtpd_tls_protocols=\!SSLv2 && postconf -e smtp_tls_protocols=\!SSLv2 && postfix reload

Supported cipher suites

Grade	Cipher Suite	Length
Strong	ADH-AES256-SHA	256 bits
	DHE-RSA-AES256-SHA
	DHE-DSS-AES256-SHA
	AES256-SHA
	ADH-AES128-SHA	128 bits
	DHE-RSA-AES128-SHA
	DHE-DSS-AES128-SHA
	AES128-SHA
	ADH-DES-CBC3-SHA
	EDH-RSA-DES-CBC3-SHA
	EDH-DSS-DES-CBC3-SHA
	DES-CBC3-SHA
Medium	ADH-RC4-MD5
	IDEA-CBC-SHA
	RC4-SHA
	RC4-MD5

$('#title').html($('meta[name=description]').attr('content'));

Supported Protocols and Cipher Suites

Supported protocols

Note

Supported cipher suites