Stronger SSL and TLS ciphers for your Postfix mail server

>>>Stronger SSL and TLS ciphers for your Postfix mail server

In case you are running e-mail server with Postfix, here is configuration improvement to use stronger SSL and TLS ciphers when connecting to secure SMTP as suggested by Switzerland-based secure mail provider ProtonMail.

I prefer running my servers on

CentOS, so to edit Postfix configuration file I hit

nano /etc/postfix/

Then somewhere in the bottom paste following:

smtpd_tls_mandatory_protocols = SSLv3, TLSv1
smtpd_tls_mandatory_ciphers = high

And don’t forget to restart Postfix:

/sbin/service postfix restart

That’s it! Happy and secure e-mailing 🙂

P. S. I haven’t yet got an invite to join ProtonMail service, still looking forward.

Update 2014-08-31: got invite to test ProtonMail service with 100 MB account. In case you are using it already, say me hello at Note – this address is just an addition to

2016-10-24T10:56:33+00:002014-08-14|CentOS|0 Comments

About the Author:

Gytis Repečka is System analyst with passion to open source, electronics & cars, spreading bits about tech, music and privacy.

Leave A Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.