Hi guys!
I already asked on the German side but didn’t get any replies for my issue yet. Maybe more possible on the international side. 🙂
I wanted to overhaul my TLS guidelines past 2 days and let generate the specific parameters for Postfix at https://ssl-config.mozilla.org/#server=postfix&version=3.4.8&config=intermediate&openssl=1.1.1k&guideline=5.6 . When I set net the new tls_medium_cipherlist
- that is EECDH+AESGCM:EDH+AESGCM
at the moment - I get an error message that the parameters field is to small for my set parameters.

That’s set at the moment:
smtpd_tls_auth_only=yes smtp_tls_protocols=!SSLv2,!SSLv3,!TLSv1,!TLSv1.1 smtpd_tls_mandatory_protocols=!SSLv2,!SSLv3,!TLSv1,!TLSv1.1 smtpd_tls_mandatory_ciphers=medium tls_medium_cipherlist=EECDH+AESGCM:EDH+AESGCM tls_preempt_cipherlist=no
And I want to set this ciphers:
ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384
Is there any trick to get it in there?