run https://en.internet.ne/mail mail server scan on my server
all of but needs to change two things
1. xeams use weak DH param (1024bit)
needs to replace DH Param file to 2048 or 4096bit
2. xeams allow to TLS renegotiation
negotiation TLS Setting by client can break TLS Security (can use weak cipher, low bit encrypt, be ban old style key exchange...)
how can i can fix it?