Hello,
don't know if this mail reached the people, sorry if yes, but didn't seen any replies.
Thanks
> Sent: Monday, August 07, 2017 at 10:03 AM
> From: "Ilya Abimael" <IlyaAbimael77@mail.com>
> To: misc@openbsd.org
> Subject: OpenSSL in Debian Unstable drops TLS 1.0/1.1 support
>
> Hello,
>
> fyi:
>
> https://news.ycombinator.com/item?id=14944849
>
> https://lists.debian.org/debian-devel-announce/2017/08/msg00004.html
>
> ----------
> Hi,
>
> I've just uploaded a version of OpenSSL to unstable that disables
> the TLS 1.0 and 1.1 protocol. This currently leaves TLS 1.2 as the
> only supported SSL/TLS protocol version.
>
> This will likely break certain things that for whatever reason
> still don't support TLS 1.2. I strongly suggest that if it's not
> supported that you add support for it, or get the other side to
> add support for it.
>
> OpenSSL made a release 5 years ago that supported TLS 1.2. The
> current support of the server side seems to be around 90%. I hope
> that by the time Buster releases the support for TLS 1.2 will be
> high enough that I don't need to enable them again.
>
>
> Kurt
> ----------
>
> AFAIK LibreSSL still supports TLS 1.0; 1.1.
>
> When will these two old versions be removed? Or still too much stuff uses them?
>
> Thanks!
No comments:
Post a Comment