Web lists-archives.com

Re: OpenSSL disables TLS 1.0 and 1.1

On Mo, Aug 07, 2017 at 11:18:38 -0500, Michael Lustfield wrote:
Is there an actual need for the removal of TLS v1.{0,1}? Are either
considered broken or unsupported by upstream? If not, I'd be much more

That’s I like to know as well.

Doing a quick check on my appliances I could find the following TLSv1-only devices:
- some iDRAC (Dell)
- Netapp Filer
- Cisco Web Security Appliances

And what about mail appliances? If they offer only TLSv1 then the Debian mailserver will fallback to unencrypted transfer. I don’t think this is a good idea.

Shade and sweet water!


| Public Keys: http://fsing.rootsland.net/~stse/keys.html |

Attachment: smime.p7s
Description: S/MIME cryptographic signature