Outlook 2007 Unable to connect to Email IMAP/POP
One of my client want to use outlook 2007 on windows 7 os but the incoming mails are working
outgoing mails giving the following error its not being connected
Do we need to change any
Options for OpenSSL and SSL/TLS Cipher Suite List to make it work with Outlook 2007
because i heard once from an cPanel team to make some changes
Please assist
-
Hi @Vs Nu, Yes, you would have to make changes to the cipher suite list but I'd recommend telling the client to upgrade their mail client. Hope that helps! 0 -
Hi @Vs Nu, Yes, you would have to make changes to the cipher suite list but I'd recommend telling the client to upgrade their mail client. Hope that helps!
Client does not want to upgrade could you please help me with what changes i need to do0 -
These work for me. in exim config, make a copy of your current rules for :- Options for SSL and SSL/TLS Cipher Suite List. This will allow you to roll back if anything goes wrong. In options for SSL input: +no_sslv2 +no_sslv3 In SSL/TLS Cipher Suite input: ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:!DSS 0 -
These work for me. in exim config, make a copy of your current rules for :- Options for SSL and SSL/TLS Cipher Suite List. This will allow you to roll back if anything goes wrong. In options for SSL input: +no_sslv2 +no_sslv3 In SSL/TLS Cipher Suite input: ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:!DSS
Still I'm getting the same error0 -
whats the rest of the error ?. 0 -
whats the rest of the error ?.
Same Error as i attached while opening this Thread0 -
As Windows 7 hasn't been supported by Microsoft since January 2020, it would be best for the client to update or they could end up experiencing other security issues down the road. Here are the details we have been providing clients that are experiencing this issue: 1 - (RECOMMENDED) The most straightforward way to resolve this issue is to either upgrade to a supported operating system, or utilize a mail client that uses modern security protocols. Windows 8.1 and newer, as well as MacOS 11.12 "Sierra" and newer fully support the newer ciphers and protocols which will allow fully secure connections. In the case of Apple, they are providing free operating system updates and there would be no cost to your end users. This is the preferred option as it increases the security of your user's systems while keeping your system secure at the server level. Other email clients such as the free and open-source Thunderbird client by the Mozilla foundation offer full support of modern TLS protocols, even on older machines running Windows 7 or OS X 10.11. Installing this and using it to connect to your email server rather than Outlook should allow your clients to receive mail locally on their computers without having to use insecure methods. You can read more about and download Thunderbird from their website here: After the patch is installed, be sure to reboot your local computer to ensure the patch was applied. Once your system is back online, please try to connect to the cPanel server again. Please note that this option is NOT available for Apple OSX computers. 3 - (NOT RECOMMENDED) If you must enable TLS 1.0 on the WHM/cPanel server for compatibility, do the following in WHM >> Home >> Service Configuration >> Exim Configuration Manager > Basic Settings: - Ensure that "Allow weak SSL/TLS ciphers" is "Off".
- Change "SSL/TLS Cipher Suite List" to (this is one long line): ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS
- Change "Options for OpenSSL" to the following: +no_sslv2 +no_sslv3
- Click "Save" at the bottom of the page.
- Change "SSL Cipher List" to this (in one long line) : ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256:ECDHE-ECDSA-AES128-SHA:ECDHE-RSA-AES256-SHA384:ECDHE-RSA-AES128-SHA:ECDHE-ECDSA-AES256-SHA384:ECDHE-ECDSA-AES256-SHA:ECDHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA256:DHE-RSA-AES128-SHA:DHE-RSA-AES256-SHA256:DHE-RSA-AES256-SHA:ECDHE-ECDSA-DES-CBC3-SHA:ECDHE-RSA-DES-CBC3-SHA:EDH-RSA-DES-CBC3-SHA:AES128-GCM-SHA256:AES256-GCM-SHA384:AES128-SHA256:AES256-SHA256:AES128-SHA:AES256-SHA:DES-CBC3-SHA:!DSS
- Change "SSL Minimum Protocol" to this: TLS1
0
Please sign in to leave a comment.
Comments
7 comments