I am sending emails using Amazon SES to my gmail mailbox. I have dived into the headers of the email, however according to what I have seen there, it uses weak cipher:(version=TLS1_2 cipher=ECDHE-ECDSA-AES128-SHA bits=128/128).
As I have checked, this is the only client-server connection where the weak cipher is used(for others the recommended ones are used), same happened on my outlook mailbox. Here is the snippet from the mail:
Received: from a4-15.smtp-out.eu-west-1.amazonses.com (a4-15.smtp-out.eu-west-1.amazonses.com. [54.240.4.15])
by mx.google.com with ESMTPS id u7si10146625wrm.425.2020.11.03.02.25.16
for <myemail@gmail.com>
(version=TLS1_2 cipher=ECDHE-ECDSA-AES128-SHA bits=128/128);
Even though as I have checked google supports stronger cipher(https://support.google.com/a/answer/9795993?hl=en)
So I have two questions:
- Why is the weak cipher used?
- Is there anything that I can do to enforce stronger cypher used except from contacting with AWS/Google?
