On 8/16/2015 8:45 PM, surgemailHIDDEN@etwinsite.com wrote:
> Hello,
>
> I am trying to send email with Outlook 2010 to the Surgemail server (licensed, Version 6.9c-1, running on Windows 2012R2). Everything worked fine until approximately this midnight, while in the morning I started to get a strange report from Outlook, saying 'Your server does not support the connection encryption type you have specified. Try changing the encryption method. Contact your mail server administrator or Internet service provider (ISP) for additional assistance.'
>
> When I looked into Surgemail log, I have found a bunch of records like "16 09:45:06.70:3872: badssl_check({my client IP here}) found so not advertising starttls"
>
> As I understand it, the server code has found the client is using "insecure" TLS (probably either the TLS version itself is not the one the server like or the algorithms requested by the client are not welcome by the server).
>
> Is it possible to turn off this security check on the server side? It makes no sense to insist on it if I can't upgrade the client -- I would prefer "insecure" TLS to no TLS at all. So far I can't send email without using plain connection, which is obviously more insecure than SSL 3.0 or RC4-based cipher suite.
>
> Sincerely yours,
> Eugene Mayevski

Hi, that's a bug in that version of surgemail where it tries to cope 
with bad ssl connections but does so in a bad way, to fix upgrade to 
6.9d from here:  http://netwinsite.com/ftp/surgemail/specials/

ChrisP.