When I run:

https://www.ssllabs.com/ssltest/index.html

on my SurgeMail server it gets an F grade.

It is running on a Windows server box and only Surgemail uses port 443
or SSL.

SurgeMail Version 6.5a-1, Built Sep  9 2013 12:52:22, Platform Windows (Surgeweb Enabled)


In  particular, the test notes that:
* This server is not vulnerable to the Heartbleed attack. (Yay!)
* This server supports SSL 2, which is obsolete and insecure. Grade set
to F. (Boo!)
* The server supports only older protocols, but not the current best TLS
1.2. Grade capped to B. (Boo!)

Is there any way to harden SurgeMail to raise these ratings? A
Surgemail.ini setting or two? Or does in need a new build?

Thanks
Neil

-- 
Neil Herber