Dovecot: no shared cipher

Tim W.

Registered
Dec 16, 2017
3
1
3
IL, USA
cPanel Access Level
Root Administrator
I have a new install, and some devices aren't able to check their email (not accounts, devices). For example, I can check my email on my laptop, but my phone can't login. Another client can check his email on his phone, but not his computer.

This is an example of the error in the mail log:
Dec 16 15:16:38 noc dovecot: pop3-login: Disconnected (no auth attempts in 0 secs): user=<>, rip=50.103.120.54, lip=208.86.158.64, TLS handshaking: SSL_accept() failed: error:1408A0C1:SSL routines:SSL3_GET_CLIENT_HELLO:no shared cipher, session=<5JP6oXtgJ4AyZ3g2>

Everything I have found points to the cipher list, but I'm not sure where to begin with editing the list. This is the current cipher list:
ECDHE-ECDSA-AES256-GCM-SHA384:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-CHACHA20-POLY1305:ECDHE-RSA-CHACHA20-POLY1305:ECDHE-ECDSA-AES128-GCM-SHA256:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES256-SHA384:ECDHE-RSA-AES256-SHA384:ECDHE-ECDSA-AES128-SHA256:ECDHE-RSA-AES128-SHA256

The SSL protocol is TLSv1.2

Any help would be greatly appreciated.

Tim
 

Tim W.

Registered
Dec 16, 2017
3
1
3
IL, USA
cPanel Access Level
Root Administrator
I tried to edit the post to follow the forum guidelines better, but it wouldn't let me. Here is more info:
/etc/redhat-release:CloudLinux Server release 6.9 (Igor Volk)
/usr/local/cpanel/version:11.68.0.20
/var/cpanel/envtype:standard
CPANEL=release