Hey all,
some of you (e.g. users of free.fr [1]) are currently seeing problems
with the LAD/LAU mailing lists. It seems to be triggered by those mail
servers still trying to negotiate handshakes using obsolete and unsafe
SSLv3 ciphers.
Several of you might have received an unsubscription notice from the
mailing list. Please note, that this is not done out of malice, but
because after several connection drops, mailman will automatically kick
subscribers off the list - which is usually good for non-existing
mail hosts or mail addresses.
However, in this particular instance I think it is due to us not
allowing those SSLv3 ciphers anymore (most mail providers actually
don't) and have not done so since the beginning of the year
(configuration-wise nothing has changed significantly in quite some time
either, which is even more pointing in an outwards direction).
The only solution to this - to my opinion - is to fix your mail server
setup (if you operate your own mail server) or ask your mail provider to
fix theirs (if you are using someone else's services).
You can validate the functionality of your TLS setup [2] before and/or
afterwards.
If both are non-viable options for you, I suggest switching to a mail
provider, that has a more well-maintained and configured mail server
setup (as we're able to deliver to other mail providers just fine).
Best,
David
[1]
https://ssl-tools.net/mailservers/free.fr
[2]
https://ssl-tools.net/mailservers/
--
https://sleepmap.de