What deos it tell you? And Why Grommunio still want to use ssl when I am telling it to not use it?
grommunio:~ # sslscan --starttls-imap 192.168.7.80
Version: 1.11.10
OpenSSL 1.0.2p-fips 14 Aug 2018
OpenSSL version does not support SSLv2
SSLv2 ciphers will not be detected
OpenSSL version does not support SSLv3
SSLv3 ciphers will not be detected
Testing SSL server 192.168.7.80 on port 143 using SNI name 192.168.7.80
TLS Fallback SCSV:
Server supports TLS Fallback SCSV
TLS renegotiation:
Session renegotiation not supported
TLS Compression:
Compression disabled
Heartbleed:
TLS 1.2 not vulnerable to heartbleed
TLS 1.1 not vulnerable to heartbleed
TLS 1.0 not vulnerable to heartbleed
Supported Server Cipher(s):
Preferred TLSv1.2 256 bits ECDHE-RSA-AES256-GCM-SHA384 Curve P-256 DHE 256
Accepted TLSv1.2 256 bits DHE-RSA-AES256-GCM-SHA384 DHE 2048 bits
Accepted TLSv1.2 256 bits AES256-GCM-SHA384
Accepted TLSv1.2 128 bits ECDHE-RSA-AES128-GCM-SHA256 Curve P-256 DHE 256
Accepted TLSv1.2 128 bits DHE-RSA-AES128-GCM-SHA256 DHE 2048 bits
Accepted TLSv1.2 128 bits AES128-GCM-SHA256
SSL Certificate:
Signature Algorithm: sha256WithRSAEncryption
RSA Key Strength: 2048
Subject: .xxxxxxxxxx.com
Altnames: DNS:.xxxxxxxxxxxx.com, DNS:xxxxxxxxxxxxxx.com
Issuer: RapidSSL TLS DV RSA Mixed SHA256 2020 CA-1
Not valid before: Jul 19 00:00:00 2021 GMT
Not valid after: Aug 14 23:59:59 2022 GMT