Barracuda Email Security Service (ESS) no longer supports the following insecure ciphers for Transport Layer Security (TLS).

  1. ECDHE-ECDSA-DES-CBC3-SHA [1.0]
    ECDHE-RSA-DES-CBC3-SHA [1.0]
    DHE-RSA-DES-CBC3-SHA [1.0]
    AES256-GCM-SHA384 [1.2]
    AES128-GCM-SHA256 [1.2]
    AES256-SHA256 [1.2]
    AES256-SHA [1.0]
    AES128-SHA256 [1.2]
    AES128-SHA [1.0]
    DES-CBC3-SHA [1.0]

So what does this mean? If any sender is sending an email to you and they are using any of the above insecure ciphers, their emails will not be delivered. We removed these ciphers since the cryptographic community has deemed these ciphers to be insecure. Many security audits would have flagged the use of any of these ciphers and that will no longer be a problem.

Please see Barracuda campus for more details.