Xeams runs on Java; therefore, most network-related configurations are inherited from the underlying platform. Administrators often want to fine-tune configuration related to TLS/SSL like specifying different cipher suites and/or disabling weaker protocols. This page describes how to accomplish this task.
Most of the advanced configuration in Xeams is done by adding entries in the server.properties file.
tls.protocols.4.smtp=TLSv1.1,TLSv1.2 synametrics.https.sslProtocol=TLSv1.1,TLSv1.2The above lines restrict the TLS version for SMTP and HTTPS to TLSv1.1 and TLSv1.2.
Add the following lines in server.properties.
ssl.cipher.list=TLS_AES_256_GCM_SHA384,TLS_CHACHA20_POLY1305_SHA256,...Additional ciphers can be appended with a comma separating their names.