![](https://seccdn.libravatar.org/avatar/1980cbbe738655bc3b2cdcf59a4a44e9.jpg?s=120&d=mm&r=g)
Dave Howorth wrote:
On Wed, 17 Mar 2021 20:24:14 +0000
first hit search for mutt tls prime length is
http://www.mutt.org/doc/manual/
and searching it for prime immediately finds
3.362. ssl_min_dh_prime_bits
Type: number Default: 0
This variable specifies the minimum acceptable prime size (in bits) for use in any Diffie-Hellman key exchange. A value of 0 will use the default from the GNUTLS library. (GnuTLS only)
which would suggest setting an explicit value there.
Aah! You're a hero! Thank you so much! Took a moment to find the proper value, and where to set it, but I now added "ssl_min_dh_prime_bits=1008" to the preconnect settings for this server, and can properly connact again! You saved my day.
second hit for gnutls prime length is
and the first FAQ is a suggested workaround
Yes, I found that, but had no idea(*) how to use/set "NORMAL:-DHE-RSA" as a priority string :P But at least I got the (old?) default of 1008 that I now use from that FAQ. (*) Yes, I'm sort-of a mail noob.